Senior IAM Engineer Identity Broker ArchitectT and T Consulting Services Inc • Silver Spring, MD, US
Senior IAM Engineer Identity Broker Architect
T and T Consulting Services Inc • Silver Spring, MD, US
[job_card.1_day_ago]
[job_preview.job_type]
- [job_card.full_time]
[job_card.job_description]JWT access tokens signed with RS256 Standard OIDC endpoints : / authorize, / token, / userinfo, / jwks, / .well-known / openid-configuration Implement SAML 2.0 Service Provider capabilities including : HTTP Redirect & POST bindings Metadata import / export Configurable SAML attribute → OIDC claim mapping Integrate with NOAA ICAM to enable CAC / PIV authentication for NOAA staff. Integrate with NOAA’s Login.gov federation broker for public user authentication. Build secure APIs and UI flows to link Login.gov identities with existing legacy systems : GARFO Certify (REST API) Store and maintain user-to-permit associations in a relational data model. Implement permit-access revocation workflows for ownership changes. Design relational database schema to preserve identity & authorization data. Implement automated unit, integration, and load tests for all login flows. Deliver containerized application builds that meet NMFS OCIO standards. Provide documentation, technical training, and post-deployment support. Collaborate closely with ECL development teams and NOAA operations staff. 5–8+ years backend engineering experience, including 3+ years in IAM. Expert-level knowledge of : OAuth 2.0 / 2.1 SAML 2.0 federation PKCE, JWT / JWS / JWKS, RS256 signing Experience building or customizing : Authorization servers SAML SP integrations Java (Spring Boot) Node.js (NestJS or Express) REST API design and secure credential handling. Relational databases (PostgreSQL / MySQL)—schema design, migrations. Docker containerization and CI / CD pipelines. Automated testing frameworks (JUnit, Jest, Mocha, Postman / Newman, etc.). Experience in federal or regulated environments. Understanding of CAC / PIV, MFA, FedRAMP / NIST 800-63 guidelines. Prior integration experience with ICAM, Login.gov, Azure AD, or similar. Experience supporting mobile / PWA apps using OIDC login. Familiarity with Appian-based systems (e.g., PIMS). Experience with large-scale identity consolidation or migration projects. Strong ability to document technical work for federal stakeholders. Excellent communication and collaboration skills. Ability to lead architecture discussions and mentor junior engineers. Comfortable working independently with distributed teams. Opportunity to build a mission-critical authentication platform that supports NOAA’s regulatory programs and the U.S. fishing industry. Work on modern identity standards and federal-grade security architecture. Collaborative environment with NOAA, NMFS, and ECL development teams. Long-term engagement potential on future modernization efforts.
Job Description
Job Description
Project Overview :
We are seeking a Senior Identity & Access Management (IAM) Engineer / Identity Broker Architect to lead the design and implementation of the Logbook Identity Management Broker for OpenID (LIMBO) for NOAA. LIMBO will serve as a mission-critical identity broker enabling secure authentication for NOAA employees (via ICAM) and public users (via Login.gov), while preserving authorization and permit data stored in multiple legacy systems.
This role is ideal for an engineer who has deep hands-on experience with both OIDC and SAML 2.0 , has built authentication platforms at scale, and can successfully operate in a federal environment with CAC / PIV, MFA, and NIST-aligned requirements.
You will drive architecture, system build, integrations, security compliance, automated testing, and support for multiple mobile applications used across the U.S. fishing industry.
Key Responsibilities
Identity Broker Development
- Design and build the LIMBO identity broker that supports :
OIDC Authorization Code Flow with PKCE (S256)
Signed assertions and responses
Federal Identity Provider Integrations
Legacy System Integrations
PIMS (Appian) via validation-code workflow
Architecture, Testing & Deployment
Required Qualifications
Identity & Authentication
OpenID Connect (OIDC)
Identity brokers
Backend Engineering
Experience with at least one modern backend stack :
or
Additional backend requirements :
Security & Compliance
Preferred Qualifications
Soft Skills
What We Provide
Benefits : Competitive benefits package including health, dental, vision, life insurance coverage, 401(k) plan, training programs, accrued paid time off (PTO), performance based monthly & quarterly awards, paid holidays and customer kudo rewards.
Equal Opportunity Employer / Veterans / Disabled
[job_alerts.create_a_job]
Senior Iam Engineer • Silver Spring, MD, US
[internal_linking.similar_jobs]
A company is looking for a Senior IAM Engineer (Okta) to focus on the design, implementation, and maintenance of Identity and Access Management solutions.
Key Responsibilities Manage the Okta envi...[show_more]
Overall Purpose of Position • The purpose of this position is to provide Identity Access Management (IAM) support to the IT department &l...[show_more]
Data Solutions Architect / AI Architect.Data Solutions Architect to support our USPSOIG contract at the Arlington, Virginia.
Location : DC area with 1 Day a Week onsite in Arlington, Virginia, 20 hours...[show_more]
A leading healthcare organization is seeking a Principal Solutions Architect to shape architectural strategy and drive the integration of advanced technologies across healthcare sectors.With respon...[show_more]
Aquent is proud to partner with a leading financial institution dedicated to innovation and maintaining robust, secure operations.
This organization is at the forefront of digital transformation, co...[show_more])
A leading technology solutions provider in Washington seeks a highly experienced Cloud Solutions Architect to lead enterprise Microsoft technology projects.
The ideal candidate will provide strategi...[show_more]
Since 1989, SHI International Corp.We’ve grown every year since, and today we’re proud to be a $15 billion global provider of IT solutions and services.
Over 17,000 organizations worldwide rely on S...[show_more]
Build Your Career at Informatica.We seek innovative thinkers who believe in the power of data to drive meaningful change.
At Informatica, we welcome adventurous minds eager to solve the world's most...[show_more]
A leading identity management company seeks a Services Architect - CIAM to guide the design and implementation of their cloud identity platform.
The ideal candidate will have over 8 years of IT expe...[show_more]
Skillsets : Active Directory, Office 365, AWS, Scripting (PowerShell, Python), NIST 800-53 control framework, Service Now.
Education : Bachelor’s degree in Information systems or related field or an e...[show_more]
Are you interested in using your skills to help shape the Cyber, Security, & Intel space? If so, look no further.In this role you will support challenging, mission-critical projects that make a dir...[show_more]
At IntraFi, we do more than innovatewe empower.Our services help banks provide vital financial access to small businesses, companies, and consumers across the country.
With a network of more than 3,...[show_more]
A global consulting and technology firm is seeking a Varicent Solutions Architect in Maryland.The role entails leading end-to-end Varicent implementation projects and providing technology expertise...[show_more]
National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, A...[show_more]
A leading digital services company in Columbia, Maryland is seeking a Director, Chief Solutions Architect.The ideal candidate should have over 15 years of experience, including 10 years in enterpri...[show_more]
While candidates in the listed locations are encouraged for this role we are considering folks in the Mid-Atlantic region as well.
Solutions Architect at Databricks within the Field Engineering orga...[show_more]
Job Description - Enterprise Architect - SME (CIS0003Z3).Are you interested in using your skills to help shape the Cyber, Security, & Intel space? If so, look no further.
In this role you will suppo...[show_more]
A technology solutions company located in Washington is looking for a Solutions Architect specializing in UiPath.The ideal candidate will have 6-8 years of IT experience, strong UiPath skills, and ...[show_more]
Senior IAM Engineer
VirtualVocations • Alexandria, Virginia, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
IAM Administrator I
Powersolv Inc • Washington, DC, United States
[job_card.full_time]
[filters_job_card.quick_apply]
[last_updated.last_updated_variable_days]
Data Solutions Architect / AI Architect
EmergencyMD • Washington, District Of Columbia, United States
[job_card.full_time]
[last_updated.last_updated_variable_hours] • [promoted] • [new]
Senior Health Solutions Architect—AI & Interoperability
Humana Inc • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_1_day] • [promoted]
IAM Systems Engineer
Skill • Washington, District of Columbia, United States
[job_card.temporary]
[last_updated.last_updated_variable_days] • [promoted]
Cloud Solutions Architect – Enterprise & AI
Systems Integration, Inc. (SII) • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
ITAM Solutions Architect
SHI • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Senior Presales Engineer
Informatica LLC • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Senior CIAM Cloud Architect - Identity Platform Leader
Okta for Developers • Washington, District Of Columbia, United States
[job_card.full_time]
[last_updated.last_updated_1_day] • [promoted]
IAM Analyst
USM • Bethesda, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Enterprise Architect - SME
Amentum • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
IAM Engineer
IntraFi • Arlington, Virginia, United States, 22201
[job_card.full_time]
[last_updated.last_updated_30]
Varicent Solutions Architect : Cloud-Driven ICM Leader
ZS • Bethesda, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior AI / ML Engineer (SWE-3)
Leidos • Columbia, MD, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior Defense Solutions Architect | Cloud & AI
eSimplicity Inc. • Columbia, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Sr. Solutions Architect - Defense Industrial Base Sell Through
Databricks Inc. • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Enterprise Architect - SME
Jacobs • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
UiPath Solutions Architect – Enterprise Automation Leader
WonderBotz • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]