Demo

IAM Governance Engineer

TriCom Technical Services
Duluth, MN Full Time
POSTED ON 4/25/2026
AVAILABLE BEFORE 5/25/2026

Our client is seeking an AI Identity Governance Engineer to lead IAM security architecture for our enterprise AI initiatives. This is a pioneering role that bridges traditional Identity and Access Management (IAM) with the emerging world of Generative AI. Your mission is to ensure that both human and non-human identities (AI agents) interact only with authorized data, maintaining strict compliance with aerospace and corporate security standards.

You will be responsible for the development and operation of our hybrid identity infrastructure (Microsoft Entra ID and Active Directory) while specifically designing the security "guardrails" for AI tools like Microsoft Copilot and custom LLMs.

Role

  • Implement entitlement management and access reviews to control access to GenAI tools. Use Microsoft Purview sensitivity labels and DLP to prevent AI from ingesting or surfacing restricted internal data.
  • Secure and govern Service Principals, Managed Identities, and API tokens used by AI agents and automated workflows to prevent unauthorized privilege escalation.
  • Manage the lifecycle of Microsoft Entra ID and on-premise Active Directory, including trust relationships, schema extensions, and health monitoring.
  • Design and enforce Conditional Access policies that target high-risk sign-ins and restrict AI platform access based on device compliance and geography.
  • Enforce Privileged Identity Management (PIM) for Just-In-Time (JIT) administrative access and monitor for anomalous behavior involving AI applications.
  • Leverage PowerShell and Microsoft Graph API to automate identity provisioning and revocation workflows.

Qualifications

Candidates need to have four or more years of progressive IAM experience in a Microsoft environment.

Required

  • Deep expertise in Microsoft Entra ID (Azure AD), Active Directory, and Group Policy.
  • Hands-on experience with Microsoft Purview (Information Protection, Data Lifecycle Management) and DLP.
  • Solid understanding of how to secure non-human/workload identities and govern LLM access within an enterprise environment.
  • Proficiency in PowerShell scripting and Microsoft Graph API.
  • Strong grasp of DNS, DHCP, and VPN as they relate to authentication flows.

referred

  • Microsoft Certifications - Identity and Access Administrator (SC-300) or Information Protection Administrator (SC-401).
  • Experience configuring security controls for Microsoft 365 Copilot.
  • Experience with Entra Verified ID or decentralized identity standards.

Job Details

  • Location: 100% On-site in Duluth, MN or Knoxville, TN
  • Employment Type: Direct Hire (Permanent)
  • Target Salary: ~$115,000 Performance-based Bonus
  • Relocation: Full relocation package available

 

Salary : $115,000 - $120,000

If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a IAM Governance Engineer?

Sign up to receive alerts about other jobs on the IAM Governance Engineer career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$90,032 - $105,965
Income Estimation: 
$111,859 - $131,446
Income Estimation: 
$110,457 - $133,106
Income Estimation: 
$105,809 - $128,724
Income Estimation: 
$122,763 - $145,698
Income Estimation: 
$94,625 - $127,578
Income Estimation: 
$132,795 - $178,786
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at TriCom Technical Services

PC Inventory & Operations Manager
Apply
  • TriCom Technical Services Wayzata, MN
  • Summary We are seeking a highly detail-oriented PC Inventory & Operations Manager to oversee device lifecycle management, PC stock levels, forecasting, and... more
  • 1 Day Ago
ServiceNow Developer
Apply
  • TriCom Technical Services Kansas, MO
  • Responsibilities Build technical business process flows inside the ServiceNow/BAW tooling/environments. Take functional and process requirements from busin... more
  • 1 Day Ago
Business Technology Solutions Lead
Apply
  • TriCom Technical Services Overland Park, KS
  • Summary Our client is seeking a Business Technology Solutions Lead to work directly with People Solutions (Employee Benefits) leaders and stakeholders to u... more
  • 2 Days Ago
BI Analyst
Apply
  • TriCom Technical Services Troy, MI
  • Summary We are seeking a BI Analyst to create reports and dashboards for business stakeholders that provide insights for decision-making. This BI Analyst w... more
  • 2 Days Ago
View More Jobs at TriCom Technical Services

Not the job you're looking for? Here are some other IAM Governance Engineer jobs in the Duluth, MN area that may be a better fit.

IAM Governance Engineer
Apply
  • Jobs via Dice Duluth, MN
  • Dice is the leading career destination for tech experts at every stage of their careers. Our client, TriCom Technical Services, is seeking the following. A... more
  • 1 Day Ago
Sr. Identity Access Management (IAM) & AI Governance Security Engineer
Apply
  • On-Demand Group Duluth, MN
  • Job Summary This role is responsible for the development and operation of a hybrid identity infrastructure (Microsoft Entra ID and Active Directory) and th... more
  • 2 Days Ago
View More Jobs

AI Assistant is available now!

Feel free to start your new journey!