Apply on Employer Site

Kavaliro · 1 day ago

IdM Architect

Aurora, CO

Contract

Onsite

Mid Level

3+ years exp

Kavaliro is seeking an Identity Management (IdM) Engineer to architect, implement, and manage a comprehensive Identity and Access Management (IAM) environment. This role ensures secure, seamless access for users across the organization and oversees the full identity lifecycle, strengthening security posture and maintaining operational continuity.

B2BConsultingDeliveryHuman ResourcesInformation Technology

Culture & Values

H1B Sponsor Likely

Responsibilities

Design, automate, and manage the end-to-end identity lifecycle for all user types

Serve as the primary technical owner integrating authoritative systems (HR, ERP, SIS, etc.) with downstream applications

Administer and maintain Microsoft Active Directory, Azure AD (Entra ID), and Google Workspace

Implement and maintain SSO solutions using SAML, OIDC, and SCIM for secure and seamless authentication across approved applications

Develop and enforce Role-Based Access Control (RBAC) policies; manage MFA and Conditional Access to protect sensitive data

Act as the final escalation point for identity-related incidents, troubleshooting complex provisioning and access issues

Ensure IAM processes comply with industry regulations and internal standards; support audits through documentation and reporting

Maintain accurate documentation of IdM architecture, workflows, and policies

Provide technical guidance, training, and support for IAM systems and policies

Perform additional functions as assigned related to IAM security and operations

Qualification

IdentityAccess ManagementActive DirectoryAzure AD (Entra ID)SAMLOIDCSCIMPowerShell scriptingGoogle WorkspaceTroubleshooting skillsRole-Based Access ControlMFAConditional AccessTechnical guidanceCommunicationDocumentation skills

Required

Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)

3+ years of hands-on IT experience with at least 2 years focused on Identity and Access Management

Proficiency in PowerShell scripting for automation and data manipulation

Strong expertise in Active Directory, Azure AD (Entra ID), and hybrid identity environments

Hands-on experience managing Google Workspace identities and groups

Deep understanding of SAML, OIDC, OAuth 2.0, and SCIM protocols

Proven ability to troubleshoot complex issues across interconnected systems

Excellent communication skills, able to translate technical details for non-technical stakeholders

Preferred

Microsoft Certified: Identity and Access Administrator Associate

CompTIA Security+

equivalent security certification

Company

Kavaliro

Kavaliro is a staffing and recruiting company that offers IT, management, and administrative staffing services.

Founded in 2010

Orlando, Florida, USA

501-1000 employees

http://kavaliro.com

H1B Sponsorship

Kavaliro has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2024 (1)