Identity, Credential, and Access Management Engineer (Remote)

Clearance Level
Systems Analysis
Remote, Based in the USA

REQ#: RQ125534

Travel Required: Less than 10%
Public Trust: Other
Requisition Type: Regular

We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country.

GDIT is seeking an Identity, Credential, and Access Management Engineer to join our team supporting the U.S. Department of Energy’s (DOE) Office of Corporate Information Systems to provide Operations and Maintenance (O&M) Support Services of their Corporate Business Systems (CBSOM).

Duties and responsibilities:

  • Supports the implementation and documentation of information assurance/security standards and procedures.
  • Serves on the integrated project team that implements a digital identity and multi-factor authentication solution for multiple web applications
  • Has a direct role in supporting the assessment and development (where required) of the organizational digital identity management security program.
  • Evaluates and recommends federated authentication solutions to support customers’ requirements.
  • Review and assesses current application authentication topologies and supports the development of the to-be centralized federated authentication solution
  • Analyzes and determines information needs and elements, data relationships and attributes, data flow and storage requirements, and data output and reporting capabilities
  • Develop and document technical and conceptual specifications in support of the overall program identity and access management designs associated with the to-be federated authentication topology
  • Serves as a technical SME for the implementation of an agency-approved Federated Authentication/MFA solution for a portfolio of Oracle and .NET business applications   
  • Supports the GDIT Cyber Architect with the development of the overarching authentication and federation
  • Design, engineer, and deploy IAM related technologies for enterprise Oracle and .NET applications using  SAML, Open ID, or OAuth with Ping Identity authentication products
  • Provide guidance to IT partners on configuration, debugging, and deployment of tools requiring IAM integration
  • Support, maintain and develop the security infrastructure under a centralized Identity Access Management (IAM) System.
  • Work closely with DBAs, application administrators, developers, and testers to troubleshoot system issues, address design challenges, and improve performance
  • Manage the development and maintenance of system configurations and process design documentation, knowledge base articles, system maintenance and troubleshooting guides, operating procedures, and application integration documentation
  • Provide third level support on application integration issues to IAM platform customers

Minimum Requirements:

  • Bachelor’s degree in Computer Science, Information Systems, Software Engineering, Business, or other related discipline with 5+ years of increasingly responsible and relevant experience in defining security requirements.  Without a degree at least 9 years of relevant experience is required.
  • 5+ years of expert-level hands-on experience in IAM and related technologies, including Active Directory, Directory Services, Single Sign-On, LDAP, PKI, Cloud Directory Services, Authorization and Authentication Technologies (SAML, Open ID Connect, or OAuth), Access Provisioning, Privileged Access Management, Role-Based Access Control (RBAC), etc.
  • 3+ years hands-on experience with Oracle Identity Management Suite (OIM, OAM, OUD, OPAM),  Ping Identity, Windows/Linux as well as scripting expertise in one or more of the following (PowerShell, Bash/Shell, Python)
  • 3+ years technical experience developing and deploying large-scale enterprise Identity and Access Management solutions; knowledge of enterprise security tools, including identity management, access control, security operations and management tools
  • Experience with Oracle and Microsoft SQL Server databases and their security configurations
  • Must be able to obtain and maintain a DOE Clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
  • US Citizenship

Desired Qualifications:

  • Experience with, Intrusion Detection/Protection Systems, Firewalls
  • Experience with technologies, including Active Directory, Windows Administration, scripting, and Windows configuration techniques
  • Azure or AWS cloud application experience
  • Previous Department of Energy experience.


  • Full-flex work week
  • 401K with company match
  • Internal mobility team dedicated to helping you own your career
  • Collaborative teams of highly motivated critical thinkers and innovators
  • Ability to make a real impact on the world around you

Not sure this job’s the one for you? Check out our other openings at

Do you have a friend or colleague this posting describes? Let them know about the opportunity by clicking “Share.”

The likely salary range for this position is $124,000 - $186,000, this is not, however, a guarantee of compensation or salary; rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

View information about benefits and our total rewards program.

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.