Booz Allen
IdentityProviderOperationsEngineer
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Identity Provider Operations Engineer at Booz Allen. Skills: Identity Provider Operations, IAM and Federation Services, Authentication and Access Management, SAML, OAuth, OpenID Connect, Zero Trust Architecture, Multifactor Authentication (MFA), Password-less Authentication, Scripting and Automation. Support the ongoing operations, maintenance, sustainment, and troubleshooting of enterprise IAM and federation services. Ensure the reliability, security, and operational readiness of authentication”
What You'll Achieve.
Ensure the reliability, security, and operational readiness of authentication and federation platforms; Minimize operational disruptions
Industry & Context.
Ability to diagnose and resolve complex identity and federation operational issues
Active TS/SCI willingness to take a polygraph exam, TS/SCI clearance is required, Security investigation, Eligibility requirements for access to classified TS/SCI clearance, On camera during interviews and assessments, Willingness to have picture taken to verify identity and prevent fraud, Cameras on during meetings (for virtual employees)
What They're Looking For.
Must Have
Experience administering, supporting, and maintaining identity platforms such as PingFederate, Okta, or Entra ID in an enterprise operations environment, Experience supporting and troubleshooting authentication and federation protocols including SAML 2. 0, OAuth 2. 0, and OpenID Connect (OIDC), Experience troubleshooting SAML, OAuth, and OIDC integrations, token exchanges, assertion mismatches, and federation connectivity issues, Experience using scripting or automation languages such as Java, JavaScript, Python, PowerShell, or Groovy to support operational tasks, automation, and maintenance activities, and with system monitoring, operational documentation, patching, and maintenance procedures for IAM services, Experience working with RESTful APIs to support identity platform integrations, operational automation, and user lifecycle management processes, Experience supporting integrations and synchronization with Active Directory (AD) or LDAP environments, Knowledge of Zero Trust architectures and operational support of multifactor authentication (MFA) and password-less authentication solutions, Ability to diagnose and resolve complex identity and federation operational issues in production environments, Active TS/SCI willingness to take a polygraph exam, HS diploma or GED
Nice to Have
Experience supporting and maintaining Ping Identity Suite tools including PingFederate, PingAccess, PingDirectory, or PingOne, Experience supporting automated user lifecycle management processes using SCIM protocols, Experience maintaining IAM platform integrations within DevOps or CI/CD operational environments, Knowledge of Okta operational features including Okta Workflows, Custom Authorization Servers, Inline Hooks, and Okta APIs, Knowledge of compliance and regulatory standards including NIST, FedRAMP, HIPAA, or related identity management frameworks, Knowledge of cloud identity platforms such as AWS Cognito, Azure AD B2C, or Google Cloud Identity, Possession of verbal and written communication skills, TS/SCI clearance with polygraph, Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field
What You'll Do.
Support the ongoing operations
and troubleshooting of enterprise IAM and federation services
Ensure the reliability
and operational readiness of authentication and federation platforms
Support daily IAM operations
Resolve authentication and federation issues
Maintain access management services
Ensure compliance with organizational security policies and standards
Monitor identity systems
Troubleshoot SSO and federation issues
Maintain MFA and password-less authentication capabilities
Support user lifecycle management processes
Apply patches and configuration updates
Assist with operational automation and service improvement initiatives
Sustain enterprise-class identity platforms
How You'll Work.
Team & Collaboration
Work closely with cybersecurity teams, system administrators, network engineers, and mission stakeholders
Communication Scope
Verbal and written communication skills
Full Job Description
Identity Provider Operations Engineer **The Opportunity:** Identity services are foundational to modern cybersecurity and mission operations. Maintaining secure, resilient, and highly available authentication and access management systems is critical to supporting enterprise users and protecting mission systems from unauthorized access. As an Identity Provider (IdP) Operations Engineer, you’ll support the ongoing operations, maintenance, sustainment, and troubleshooting of enterprise IAM and federation services in support of Zero Trust initiatives and mission-critical environments. In this role, you’ll help ensure the reliability, security, and operational readiness of authentication and federation platforms used across the enterprise. You’ll work closely with cybersecurity teams, system administrators, network engineers, and mission stakeholders to support daily IAM operations, resolve authentication and federation issues, maintain access management services, and ensure compliance with organizational security policies and standards. Your responsibilities will include monitoring identity systems, troubleshooting SSO and federation issues, maintaining MFA and password-less authentication capabilities, supporting user lifecycle management processes, applying patches and configuration updates, and assisting with operational automation and service improvement initiatives. You’ll help sustain enterprise-class identity platforms that enable secure access to critical systems and applications while minimizing operational disruptions. Join us. The world can’t wait. **You Have:** * Experience administering, supporting, and maintaining identity platforms such as PingFederate, Okta, or Entra ID in an enterprise operations environment * Experience supporting and troubleshooting authentication and federation protocols including SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC) * Experience troubleshooting SAML, OAuth, and OIDC integrations, token exchanges, assertion mismatches, and
Applying for this Identity Provider Operations Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Booz Allen?
Real rants from real employees. Read before you apply.