Identity Access Management Engineer We are seeking an Identity Access Management Engineer who will analyze systems, including forensically, misuse, and unauthorized activity. Responsibilities
• Investigate virus/malware and incidents to determine root cause, entry point of code, damage risk, and report this information.
• Investigate and analyze of all data sources, to include Internet, Intelligence Community reporting, security events, firewall logs, forensic hard-drive images, and other data sources to identify malware, misuse, unauthorized activity or other cyber security related concerns.
• Monitor, document, and respond to centrally collected virus alerts.
• Participate in project review meetings and provide technical cyber security guidance when necessary.
• Conduct tier-3 support of current infrastructure.
• Design, test, and integrate new security products as directed by GTM.
• Ensure all network defense capabilities are kept current, patched, and securely configured and management informed of status.
• Provide engineering support for all Sponsor systems such as network based intrusion detection.
• Integrate security products, including designs for all Sponsor networks.
• Maintain a network diagram for each instruction detection, cyber defense capability and sensors and make available to all Sponsor personnel.
• Maintain system baselines and configuration management items, including security event monitoring policies in a manner determined and agreed to by the Sponsor.
• Provide engineering documentation and interaction with colleagues to ensure a complete and functioning system that meets requirements.
• Conduct software testing (patches, other updates); beta testing; proof of concept testing.
• Stay abreast Sponsor's directives, regulations, guidance, notices and standards on cybersecurity.
• Have detailed knowledge intelligence Community Directives (ICDs), Cyber Security Policy, and agency Guidance related to cybersecurity. Required Qualifications
• Active TS/SCI clearance with polygraph required #qinetiqclearedjob
• Experience with Identity Management, Public Key Infrastructure (PKI) certification issuance, and Security Assertion Markup Language (SAML) supporting single-sign-on (SSO) functions.
• Knowledge of Micrsoft Azure Entra Secure Identity and Access services and Federated Cloud Authentication.
• Familiarization with Multi-Factor Authentication (MFA) and Zero-Trust Architecture services and concepts
• Experience providing operational support and development of system administration and standard operating procedures (SOPs) for IT services. Preferred Qualifications
• Knowledge of program management, workflow automation and system auditing solutions such as JIRA, ServiceNow, Confluence and Splunk. • IT service and identity management automation and development leveraging Logic/Function apps and PowerShell scripting