Apply on Employer Site

Leidos · 2 months ago

Microsoft 365 / Entra Identity Engineer

Washington, DC

Full-time

Onsite

Senior Level, Lead/Staff

$131K/yr - $237K/yr

8+ years exp

Leidos is a leading technology company focused on providing innovative solutions for federal agencies. They are seeking a Senior Entra Identity Engineer to lead the design, implementation, and support of Zero Trust Architecture initiatives within Microsoft 365, focusing on modern authentication and secure app provisioning. The ideal candidate will have extensive experience in identity management and a strong understanding of the federal environment.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware

No H1B

U.S. Citizen Only

Responsibilities

Lead engineering efforts to adopt Zero Trust Architecture methodologies applicable to Microsoft 365 and Entra, including:

Modern Authentication

Phish-Proof Multifactor

Application Gateway

Conditional Access

Single Sign-On

App Provisioning of User Identities

Lead engineering efforts for Tenant hardening and secure configuration aligned with industry standards, specifically baselines outlined by the Cybersecurity and Infrastructure Security Agency (CISA) and Office of Management and Budget (OMB)

Hands-on maintenance and support of M365 / Entra platform, including remediation/methodical troubleshooting of issues escalated by Tier 1 & 2 operational support teams

Lead engineering efforts to return MCC investment on M365 products such as Microsoft Defender and Intune

Lead engineering efforts to enhance MCC’s on-premises Microsoft technology stack, such as enhancements to Active Directory, Certificate Services, Windows Server/Desktop Operating Systems, and Cloud connectors linking on-prem to hosted environments

Qualification

Microsoft 365EntraIdentity ManagementZero Trust ArchitectureConditional AccessPhish-Proof MultifactorPrivileged Access ManagementSaaS IntegrationMicrosoft GraphFISMA ComplianceMicrosoft Certified SecurityMicrosoft Certified ComplianceMicrosoft Certified Identity FundamentalsCompTIA CASPSC-300 CertificationMS-500 CertificationCommunication SkillsSoft Skills

Required

8+ years of experience with conditional access, identity governance, privileged access management, and privileged access workstations

8+ years of experience designing, implementing and supporting highly complex M365 services across Entra / Azure AD, Exchange Online, Teams, Intune, and Defender

5+ years designing and implementing identity and access management systems including Architecture of Entra / Azure AD with conditional access and MFA policies

5+ years of experience managing Privileged Identity Management (PIM), Just-in-Time (JIT) access

5+ years of experience administering SaaS and application integration with Azure AD / SSO, including custom applications' SSO integration and migrations from ADFS

5+ years of experience managing Microsoft Graph / Office 365 APIs

5+ years' experience providing enterprise support within a FISMA compliant environment

Proficient written and verbal communicator. Possesses soft people skills and grasps enterprise information technology methodologies

Microsoft Certified: Security, Compliance and Identity Fundamentals

CompTIA Advanced Security Compliance Practitioner (CASP)

Must be a US Citizen