Job ID: JOB_ID_895
Role Overview: Identity and Access Management (IAM) Engineer
Maasco Tech is seeking a highly skilled and self-motivated Identity Management Engineer to join a premier Identity and Access Management (IAM) organization. This critical role is dedicated to the operational health, engineering, and project support of enterprise-scale Identity Platforms. As an IAM Engineer, you will be at the forefront of ensuring a stable and secure environment for one of the nation’s leading financial institutions. You will navigate complex integrations, manage legacy systems, and drive the transition toward modern, cloud-based platforms like AWS.
Key Responsibilities and Technical Leadership
- Engineering & Configuration: You will be responsible for the engineering, configuration, customization, and ongoing support of the Identity Management environment, specifically focusing on Microsoft Identity Manager (MIM) and Active Directory Lightweight Directory Services (ADLDS).
- Infrastructure Management: Manage and maintain the underlying SQL Server infrastructure. This includes ensuring high availability, performance tuning, and implementing robust backup and recovery strategies for the entire identity stack.
- Solution Architecture: Translate complex business requirements into workable technology solutions. You will develop detailed architecture diagrams, technical standards, and comprehensive implementation documentation to guide the team.
- Automation & Modernization: Develop automated solutions using advanced scripting, CI/CD pipelines, and cloud-based serverless computing platforms (AWS Lambda) to modernize manual processes and improve operational efficiency.
- Incident Response: Lead troubleshooting efforts and incident resolution for high-severity issues. This role requires participation in a 24x7x365 support rotation for the IAM ecosystem.
- Environment Optimization: Continuously analyze the current Authentication Services environment to identify technical gaps and develop strategic action plans for optimization and risk mitigation.
Required Technical Qualifications
- Minimum of 3+ years of hands-on experience with Microsoft Identity Manager (MIM) and Forefront Identity Manager (FIM), including synchronization services and multiple reference implementations.
- Proven expertise in SQL Server maintenance, specifically in supporting high-availability databases for identity management.
- Strong coding and scripting proficiency using .NET, PowerShell, and VBScript.
- 4+ years of experience supporting large-scale, enterprise-level identity and directory service solutions such as Active Directory (AD) and ADLDS/ADAM.
- Foundational understanding of AWS cloud security and experience with automated serverless computing.
Preferred Skills and Experience
- 3+ years of experience with AWS infrastructure components including EC2, CloudFormation Templates (CFT), and YAML.
- Advanced scripting capabilities in Python or other languages for automated solution development.
- Experience with observability and monitoring tools such as Splunk (querying and dashboards) and New Relic.
- Familiarity with NIST compliance, Group Policy controls, and Governance policies within a highly regulated financial environment.
This position offers a unique opportunity to work within a sophisticated IAM framework, contributing to the security posture of a Fortune 500 company while leveraging the latest in cloud and automation technologies. The ideal candidate will possess a blend of legacy system expertise and a forward-looking mindset for cloud integration.
Special Requirements
MUST have previous Capital One experience. Must sit onsite in Plano, TX, Richmond, VA, or McLean, VA (preferred hybrid model).
Compensation & Location
Salary: $145,000 – $195,000 per year (Estimated)
Location: Plano, TX
Recruiter / Company – Contact Information
Recruiter / Employer: Maasco Tech LLC
Email: kush@maascotech.com
Recruiter Notice:
To remove this job posting, please send an email from
kush@maascotech.com with the subject:
DELETE_JOB_ID_895