IAM Systems Engineer
Baltimore, MD
Contracted
Mid Level
Location: 1x/week onsite in Baltimore, MD
Long-term contract: 5+ years
W2 with benefits or 1099 Individual Contractor
Green Card Holder or USC only
We are seeking a skilled Systems Engineer to strengthen our Hybrid cloud security posture
across Active Directory, Microsoft Azure AD and Google Cloud Platform (GCP) while also
advancing our Identity and Access Management (IAM) program. The engineer will work closely
with security technicians to improve cloud security controls, streamline monitoring, and migrate
existing security products and log sources into Microsoft Sentinel SIEM for centralized visibility
and response.
Key Responsibilities:
Qualifications:
- 3+ years of experience in cloud security engineering and/or IAM
administration/engineering.
- Hands-on expertise with AD, MSGraph,PowerShell, LDAP tools, Microsoft Azure
Security (Entra ID, Defender for Cloud, conditional access, PIM) and Google Cloud
IAM/security tools.
- Experience with Microsoft Sentinel setup, log ingestion, and use-case development.
- Strong background in IAM platforms, solutions, or technologies (e.g., Azure Entra ID,
Active Directory, Google Admin Console).
- Familiarity with onboarding connectors, custom log sources, and security product
integrations into SIEM platforms.
- Solid understanding of incident response, threat detection, and security monitoring.
- Relevant certifications (e.g., Azure Security Engineer Associate, Google Professional
Cloud Security Engineer, Identity-focused certifications, Security+, MCSA, etc.) are a
plus.
Preferred Skills:
- Scripting/automation (PowerShell, Python, or similar) for IAM administration and SIEM
onboarding.
- Knowledge of compliance frameworks (NIST CSF, CIS Controls, ISO 27001).
- Strong communication skills to coordinate with technicians, analysts, and leadership.
Long-term contract: 5+ years
W2 with benefits or 1099 Individual Contractor
Green Card Holder or USC only
We are seeking a skilled Systems Engineer to strengthen our Hybrid cloud security posture
across Active Directory, Microsoft Azure AD and Google Cloud Platform (GCP) while also
advancing our Identity and Access Management (IAM) program. The engineer will work closely
with security technicians to improve cloud security controls, streamline monitoring, and migrate
existing security products and log sources into Microsoft Sentinel SIEM for centralized visibility
and response.
Key Responsibilities:
- Daily account provisioning audits and corrections between all Tenants, Experience with
- LDAP, PowerShell, Microsoft Graph
- Conduct regular cloud and IAM security assessments, ensuring compliance with industry
- standards and organizational policies.
- Improve and maintain security configurations, policies, and controls in Hybrid Microsoft
- environment with On-prem Active Directory, Azure and Google Cloud environments.
- Enhance IAM capabilities, including user lifecycle management, role-based access
- control (RBAC), privileged access management (PAM), and conditional access policies
- across cloud and enterprise systems.
- Collaborate with security technicians to onboard and integrate cloud and third-party
- security products into Microsoft Sentinel.
- Develop and refine analytic rules, playbooks, and dashboards within Sentinel to support
- threat detection and response.
- Assist in incident investigations by optimizing logging, monitoring, and reporting from
- cloud services and IAM systems.
- Provide guidance to technicians on IAM best practices, security governance, and SIEM
- operations.
Qualifications:
- 3+ years of experience in cloud security engineering and/or IAM
administration/engineering.
- Hands-on expertise with AD, MSGraph,PowerShell, LDAP tools, Microsoft Azure
Security (Entra ID, Defender for Cloud, conditional access, PIM) and Google Cloud
IAM/security tools.
- Experience with Microsoft Sentinel setup, log ingestion, and use-case development.
- Strong background in IAM platforms, solutions, or technologies (e.g., Azure Entra ID,
Active Directory, Google Admin Console).
- Familiarity with onboarding connectors, custom log sources, and security product
integrations into SIEM platforms.
- Solid understanding of incident response, threat detection, and security monitoring.
- Relevant certifications (e.g., Azure Security Engineer Associate, Google Professional
Cloud Security Engineer, Identity-focused certifications, Security+, MCSA, etc.) are a
plus.
Preferred Skills:
- Scripting/automation (PowerShell, Python, or similar) for IAM administration and SIEM
onboarding.
- Knowledge of compliance frameworks (NIST CSF, CIS Controls, ISO 27001).
- Strong communication skills to coordinate with technicians, analysts, and leadership.
Apply for this position
Required*