×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Identity & Access Management; IAM Engineer

Job in Oak Ridge, Anderson County, Tennessee, 37830, USA
Listing for: EmergencyMD
Full Time position
Listed on 2026-01-16
Job specializations:
  • Engineering
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 90000 - 120000 USD Yearly USD 90000.00 120000.00 YEAR
Job Description & How to Apply Below
Position: Identity & Access Management (IAM) Engineer

COMPANY OVERVIEW

XCEL Engineering, Inc. is an award‑winning small business that provides trusted information technology, engineering, consulting and project management solutions and services to federal agencies and organizations. Originally founded in 1971 by professional engineers at the University of Tennessee, XCEL was acquired in 2003 by U.S. Army and Navy veterans and in 2023 became a Martin Fed company.

XCEL Engineering is a part of IT Lab Partners (ITLP) which was created to support a leading research facility in the East Tennessee region in  the best and the brightest technical talent. Considering joining our impressive team today!

JOB OVERVIEW

XCEL Engineering is seeking a qualified applicant for a highly skilled IAM professional to engineer and administer SailPoint Identity

IQ and advance our Zero Trust architecture in the identity pillar. This role owns joiner‑mover‑leaver (JML) automation, access governance, role modeling, and certification campaigns, partnering closely with Cyber Security and Policy to embed least privilege, continuous verification, and risk‑based access.

ESSENTIAL FUNCTIONS

SailPoint Engineering & Administration

  • Engineer/administer SailPoint (IIQ/IDN): configuration, workflows, rules/policies, testing, deployment, maintenance.
  • Onboard applications: connectors for Entra

    ID, SaaS, on‑prem , DBs, directories (AD/LDAP), and HRIS (Workday/Success Factors).
  • Automate JML: provisioning/deprovisioning, birthright/role‑based access, movers entitlements.
  • Access governance: entitlements, group management, SOD policies, certification campaigns.
  • Role engineering: business/technical roles aligned to least privilege.
  • Platform ops: patching, upgrades, performance tuning, troubleshooting.
  • Customization: rules/workflows/tasks (Java/Beanshell for IIQ), UI config, reporting, dashboards.

Zero Trust Architecture

  • Implement identity‑first controls: MFA, PKI, conditional access, adaptive/risk‑based auth.
  • Integrate with CASB and endpoint posture signals.
  • Align with Zero Trust principles (least privilege, continuous verification).

Integration & Automation

  • Build APIs/scripts (Power Shell, Python) for IAM workflows.
  • Support CI/CD collaborazione for IAM configs and environment promotion.

Governance & Compliance

  • Maintain audit evidence; enforce SOD; reduce identity risk through metrics.
BASIC QUALIFICATIONS
  • United States citizen with the ability to obtain a security clearance.
  • Bachelor's degree in Information Technology, IT Operations Management, or a related field.
  • 5以前 years IAM/IGA, 2-4 years SailPoint engineering/admin (IIQ).
  • Strong grasp of Zero Trust; identity protocols (OIDC/OAuth2/SAML); AD/LDAP.
  • Scripting:
    Power Shell, Python;
    Java/Beanshell (IIQ); REST APIs.
DESIRED QUALIFICATIONS
  • SailPoint certifications; SC‑300; CISSP; AZ‑500.
  • Experience with Entra /Ping, CASB, Service Now.
PHYSICAL REQUIREMENTS & ENVIRONMENTAL CONDITIONS
  • Inside office environment.
  • Working on a computer for long periods of time.
    • איצ
  • May involve long period of sitting at a deskιε.
  • The work environment is fast‑paced and sometimes involves extreme deadline pressures.
OTHER DUTIES

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any OCD time with or without notice.

XYZ Engineering is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment

Fern without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable federal, state or local law.

If you are a qualified individual with a disability or disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access XYZ Engineering's current openings as a result of your disability. You can request reasonable accommodations by calling . Thank you for your interest in XYZ Engineering.

All positions at XCEL Engineering, Inc. are contingent upon passing both a background check and drug screening prior to a start date and are subject to random drug screenings during the employment period. In addition, Xcel Engineering is an E‑Verify employer.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search