confidential

Compensation

Full Description

SENIOR CONSULTANT (IDENTITY ACCESS MANAGEMENT ENGINEER) WHO WE ARE Apex Systems is a leading global technology services business that incorporates industry insights and experience to deliver solutions that fulfill our clients’ digital visions. We provide a continuum of services, including strategy and enablement, innovation and productivity, and technology foundations to drive better results and bring more value to our clients. Apex transforms our customers with modern enterprise solutions tailored to the industries we serve. Apex has a presence in over 70 markets across North America, Europe, and India. Apex is a part of the Commercial Segment of ASGN Incorporated (NYSE: ASGN). To learn more, visit www.apexsystems.com. At Apex Systems, we prioritize professional development, work-life balance, and fostering a collaborative culture. We value our teams well-being and recognize the importance of building strong relationships. Thats why we organize regular team-building events and philanthropic days to give back to the community - fostering a sense of purpose and fulfillment among our team. Join us for career advancement, innovative solutions, and a supportive environment focused on your success.JOB DESCRIPTIONApex Systems is seeking a seasoned Identity & Access Management (IAM) Engineer to join our cybersecurity consulting practice. This role offers the opportunity to collaborate on enterprise identity initiatives across diverse Fortune 500 clients. You will design comprehensive IAM solutions and implement emerging Zero Trust technologies. As both a technical engineer and strategic advisor, you will collaborate with client stakeholders to design and implement identity programs and tools that align business objectives and regulatory requirements. As a Senior IAM Consultant, you will participate on cross-functional project teams, mentor junior engineers, and provide technical expertise for Apexs sales initiatives. This position provides exposure to innovative identity technologies and complex technical challenges across multiple industries. The ideal candidate combines deep technical expertise in enterprise identity platforms with strong consulting skills and a passion for solving complex security challenges. RESPONSIBLITIESExecute end-to-end identity projects including requirements gathering, solution design, development, implementation, testing, and deployment with primary focus on identity platforms (e.g., SailPoint IdentityNow, Security Cloud/IdentityIQ and Saviynt).Design and configure comprehensive identity governance and administration (IGA) processes including access request workflows, automated provisioning/de-provisioning, role management, access certification campaigns, and policy enforcement.Configure and customize identity infrastructure and environments, develop custom connectors and APIs, integrate with cloud platforms (e.g., Azure, AWS), identity providers (e.g., Microsoft Entra, Okta), PAM solutions (e.g., CyberArk), and establish connectivity with enterprise applications and authoritative sources.Assist in assessments of existing identity infrastructure, identify security gaps and vulnerabilities, and recommend strategies aligned with business objectives and regulatory requirements.Collaborate with cross-functional teams, including security, IT operations, and application teams, to ensure seamless integration of identity solutions and translate business requirements into technical implementations.Develop detailed implementation guides, configuration documentation, test plans, runbooks, and establish metrics that provide visibility into identity ecosystem performance and efficiency.Support technical aspects of pre-sales activities, assist with solution scoping, and contribute technical expertise to proposal development and client presentations.Provide guidance and mentorship to junior team members and maintain awareness of emerging trends and technologies in the identity space. JOB REQUIREMENTSProven minimum 4+ years of experience in enterprise identity and access management with demonstrated expertise in access governance, identity lifecycle management, and compliance frameworks.Direct experience with IGA platforms including (e.g., SailPoint Identity Security Cloud/ IdentityIQ, Saviynt) with ability to design, configure, and customize workflows, rules, and connectors.Experience integrating or configuring identity providers such as Microsoft Entra, Okta, or similar solutions in enterprise environments.Integration experience with privileged access management (PAM) tools such as CyberArk, HashiCorp Vault, or Delinea.Direct experience with cloud identity services and APIs in Azure, AWS, or Google Cloud Platform environments.Experience with authentication technologies and protocols including SSO, SAML, OIDC, OAuth, LDAP, and SCIM implementations.Proven history of developing governance documentation, technical procedures, and compliance artifacts with consideration of security controls and regulatory frameworks.Experience collaborating with cross-functional teams to gather requirements, assess system impacts, and ensure successful identity platform deployments.Strong background in developing and implementing role-based access control (RBAC) models, access policies, and separation of duties (SoD) frameworks.Experience working with technical teams and contributing to project deliverables with ability to communicate effectively with both technical and non-technical stakeholders.SailPoint Professional certification strongly preferred, other certifications (e.g., Saviynt, Microsoft Entra, CyberArk, Okta, etc.) a plus.Deep understanding of identity principles, concepts, and best practices including access control, authentication, credential verification, machine identity, and provisioning.Strong knowledge of authentication technologies, standards, and protocols such as SSO, OIDC, SAML, LDAP, OAuth, and SCIM.Direct experience with SailPoint configuration including connector development and customization (JDBC, LDAP, Active Directory, cloud connectors) and application onboarding processes.Experience with rule writing (identity, correlation, transformation) and workflow design for approval processes and provisioning.Experience with programming languages such as Python, PowerShell, or BeanShell and database technologies (Oracle, MSSQL, MySQL) for connector development and data integration.Proficiency with API integration (REST/SOAP) and data transformation and mapping between systems.Experience with various integration methods including flat files and database connectivity for onboarding authoritative sources and applications.Ability to contribute to identity infrastructure assessments, gap analyses, and strategic planning initiatives with increasing responsibility based on experience level.Excellent written and verbal communication skills with demonstrated ability to clearly explain technical concepts to non-technical audiences.Strong critical thinking skills with ability to analyze complex issues and implement effective solutions.Highly motivated, consultative, problem-solving mindset with ability to influence others, build relationships, and manage conflicts. OUR AWESOME BENEFITS: Competitive PayHealth, Dental and Vision InsuranceVacation and Holiday PayTeam Building EventsPartial Gym Membership Paid401k Retirement PlanTraining and Advancement opportunitiesTuition ReimbursementBirthdays OffPhilanthropic OpportunitiesReferral ProgramLong and Short-Term DisabilityLife Insurance EEO EmployerApex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at employeeservices@apexsystems.com or 844-463-6178.