Identity & Access Management Cloud Engineer, #2019-65

Defense Point Security Leon Valley , TX 78238

Posted 1 week ago

Do you want to work for a company that is passionate about security and has a fun, start-up culture with large company perks? Do you want to be in an environment where you will continuously learn new skills, grow and take on new opportunities due to the abundance of new projects on the horizon?

If you answered yes to these questions, this opportunity could be for you!

Defense Point Security offers a competitive benefits package to include:

  • Medical, Dental, Vision Insurance Premiums are 100% paid by DPS for employee and eligible dependents

  • Personal Accident Insurance paid by DPS

  • Life Insurance paid by DPS

  • Short- and Long-Term Disability Insurance paid by DPS

  • 401k Contribution Matching and 100% vested after 90 days

  • Flexible Spending Accounts

  • Commuter Assistance

  • Paid Time Off starting at 3 weeks a year (15 days)

  • 10 paid Federal Holidays

  • Capital BikeShare Membership for DC Metro Area

  • Reimbursement for qualifying training expenses

  • Flexible / Alternative Work Schedules

Defense Point Security is currently seeking an Identity & Access Management Cloud Engineer in San Antonio, TX.

Job Responsibilities:

  • Helping design, plan, implement and support strategic initiatives in Identity & Access Management for use by its CMPS team members and CMPS tenants.

  • Participate in requirements gathering sessions, support development of well-defined statements of work and specification documents, and support driving projects to successful deployment by leveraging internal resources.

  • As needed, perform comparative analysis of multiple technologies and vendor offerings to evaluate fit to function for incorporation into CMPS infrastructure.

  • Support CMPS security services to include SME role assisting Attribute-Based Access Control and Secure Token Service issuance.

  • Support requirements management, oversight, updates, discrepancy reports and requests for change (RFCs).

  • Coordinate/collaborate with stakeholders regarding policy, development and governance.

  • Support analysis of new IAM technologies.

  • Facilitate app enablement with IAM services.

  • Provide guidance regarding changes to the AD schema.

  • Manage and maintain standardized Organizational Units (OU) in AD.

  • Manage and maintain AD custom attributes and security groups.

  • Manage AD sites and subnets, including site replication.

  • Manage and maintain group policy, and scripts associated with group policy, to secure the IT infrastructure and grant necessary resources to staff and tenant users, consistent with job requirements (i.e. server, common Microsoft products such as SharePoint, Teams and other group policies as requested).

  • Create and maintain a Group Policy Map to indicate what each group policy does, what resource(s) is (are) affected and understand the effect of any change to group policy.

  • Manage the AD database, System Volume (SYSVOL).

  • Monitor Domain Controllers to prevent outages and/or restore service in a timely manner, analyze the policies currently monitored, and make recommendations as needed to provide meaningful alerts for action.

  • Audit changes to accounts, group policy, and other changes to AD with enterprise auditing tools.

  • Maintain a listing of all service accounts, the applications and servers which use them, and the unit responsible for the accounts.

  • Provision, modify, and deprovision user and administrator accounts for CMPS upon receipt of approved access or deprovisioning request, based upon location, role, or both.

  • Make necessary adjustments to security controls to grant only that access to IT resources required for job performance.

  • Manage user profiles, including access to share drives, OU assignment, password reset, and general directory cleanup at regular intervals.

  • Manage and maintain delegation of permissions.

  • Follow CMPS policy and procedures for account management to create, modify, or delete accounts and account permissions.

Job Qualifications:

  • This position requires US Citizenship due to our Federal contractual obligation

  • 5 Years experience in architecting IAM solutions leveraging industry leading products in one or more of the following: CA SiteMinder, Tivoli Identity Management ForgeRock Identity Management, OneLogin or SailPoint IQ.

  • 5 Years experience in working with Microsoft Active Directory including user account management and implementation of services to Microsoft-Based Platforms.

  • 5 years AD Security & Design Architecture

  • 3 years experience implementing IAM solutions in cloud environments on AWS and Azure platforms.

  • 3 Years experience in working with requirements teams translating IAM business processes including user provisioning and access management with knowledge of authentication and federation protocols including SAML (different implementations and flavors Oauth, MiniOrange, etc.) and ADFS.

  • 3 years Encryption, RHEL Linux or variant distributions, Firewalls/WAF experience.

  • Highly proficient in the core IAM principles including identity provisioning, authentication and authorization services, and implementation of directory services.

  • Experience supporting authentication services including firewall and web services, Kerberos constrained delegation, and single sign on.

  • Possess a broad understanding of web services including troubleshooting internal and external sources. Must include an understanding of protocols for web traffic, troubleshooting, and diagnosing of connectivity issues.

  • Requires working knowledge of Privileged Account Management (PAM) system and application administration.

  • Experience with Lightweight Active Directory Protocol (LDAP) and Secure Lightweight Active Directory Protocol (LDAPS).

  • General understanding of Structured Query Language (SQL), PowerShell and Python.

  • General understanding of RSA management and support.

  • Understanding of Attribute-Based Access Control design patterns as implemented by various vendors.

Preferred Qualifications:

  • Bachelors degree

  • Experience designing and managing IAM schemas to support a Managed Service Provider (MSP) structure in both a single and multi-tenant model.

  • Experience with ITIL processes

  • Experienced in deploying solutions in federal environments including knowledge of NIST, FISMA, FedRAMP and/or DoD regulations.

  • Working knowledge of Service Now Ticket Management Systems

  • Security+ Certification, MCSE, MCSA, CISSP, CISM, or greater

Job Location: San Antonio, TX

Position Type: FullTime/ Regular

All candidates must be clearable.

To see other locations please see the Security Engineering Career Menu on

Defense Point Security is an Equal Opportunity / Affirmative Action Employer. We are committed to hiring and retaining a diverse Community workforce. DPS gives equal consideration to all qualified candidates without regard to race, color, religion, creed, gender identity, national origin, sex, pregnancy, marital status, age, sexual orientation, disability, veteran status, or any other protected class.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sunglass Hut Sales Associate

The Luxottica Group

Posted 2 days ago

VIEW JOBS 3/24/2019 12:00:00 AM 2019-06-22T00:00 Requisition ID: 97739 Store #: 004566 Sunglass Hut Position:Casual Part-Time Sunglass Hut is a global leader in the sale of premium sunglasses with over 2000 retail stores across North America. We offer competitive benefits, valuable training, and unlimited growth opportunities. As part of an eyewear industry leader, Luxottica, Sunglass Hut has an energetic, fashion-forward culture and diverse career paths for all types of talented and driven people. At Sunglass Hut, our mission is to be the premier shopping and inspiration destination for the top brands, latest trends and exclusive styles of high quality fashion and performance sunglasses. Native Americans receive preference in accordance with Tribal law. GENERAL FUNCTION The Sales Associate is vital to the success of Sunglass Hut and is an ambassador of The Sunglass Hut Experience.  The Sales Associate spends time on the sales floor performing all functions relating to The Sunglass Hut Experience and store operations.   MAJOR DUTIES AND RESPONSIBILITIES * Utilizes The Sunglass Hut Experience tools to consistently deliver sales plan and company objectives. * Achieves/exceeds individual sales plan by creating an EMOTIONAL CONNECTION with customers. * Leverages reporting tools to track individual results and identify areas of opportunity. * Partners with Store/Center Manager to maximize sales potential. * People work for people – uses this philosophy to grow careers, encourage teamwork and retain talent through a development-focused environment. * Creates an inspirational and motivating work environment that reflects the integrity of the brand. * Collaborates with fellow Associates to foster teamwork. * Seeks out opportunities for self-development as defined in an individual development plan. * Creates an EMOTIONAL CONNECTION within the store team that translates into sales and ensures that every Associate consistently delivers The Sunglass Hut Experience. * Spends 100% of the time on the sales floor. * Ensures every aspect of The Sunglass Hut Experience is impeccably executed throughout the store. * Makes simple and fast decisions in the best interest of our customers. * Acts as an ambassador for the Sunglass Hut brand. * Builds the Sunglass Hut brand by consistently executing the brand standards. * Stays adept at knowing the product and staying current on new merchandise and fashion trends. * Builds and develops expertise in delivery of The Sunglass Hut Experience. * Consistently executes all visual standards, store merchandising practices and inventory control activities. * Impeccably executes all operational policies and procedures and maintains brand standards. * Properly executes all promotions, contests and incentives   BASIC QUALIFICATIONS * High school diploma or equivalent * Demonstrated expertise in every aspect of store operations * Detail-oriented * Critical thinking   PREFERRED QUALIFICATIONS * Customer service and/or retail experience * To accommodate our diverse customer base, preference may be given to bilingual candidates depending upon the needs of the location. Upon request and consistent with applicable laws, Luxottica will provide reasonable accommodations to individuals with disabilities who need assistance in the application and hiring process. To request a reasonable accommodation, please contact Talent Luxottica at 877-589-8253 (513-765-2256 outside of US) or email We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity or expression, citizenship, veteran or military status, marital status, pregnancy (including unlawful discrimination on the basis of a legally protected pregnancy or maternity leave), genetic information or any other characteristics protected by law.Native Americans receive preference in accordance with Tribal law. Sales associate 4566 Sales Associate The Luxottica Group Leon Valley TX

Identity & Access Management Cloud Engineer, #2019-65

Defense Point Security