Talent.com
Senior IAM Engineer Identity Broker Architect
Senior IAM Engineer Identity Broker ArchitectT and T Consulting Services Inc • Silver Spring, MD, US
Senior IAM Engineer Identity Broker Architect

Senior IAM Engineer Identity Broker Architect

T and T Consulting Services Inc • Silver Spring, MD, US
[job_card.variable_hours_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Job Description

Job Description

Project Overview :

We are seeking a Senior Identity & Access Management (IAM) Engineer / Identity Broker Architect to lead the design and implementation of the Logbook Identity Management Broker for OpenID (LIMBO) for NOAA. LIMBO will serve as a mission-critical identity broker enabling secure authentication for NOAA employees (via ICAM) and public users (via Login.gov), while preserving authorization and permit data stored in multiple legacy systems.

This role is ideal for an engineer who has deep hands-on experience with both OIDC and SAML 2.0 , has built authentication platforms at scale, and can successfully operate in a federal environment with CAC / PIV, MFA, and NIST-aligned requirements.

You will drive architecture, system build, integrations, security compliance, automated testing, and support for multiple mobile applications used across the U.S. fishing industry.

Key Responsibilities

Identity Broker Development

  • Design and build the LIMBO identity broker that supports :

OIDC Authorization Code Flow with PKCE (S256)

  • JWT access tokens signed with RS256
  • Standard OIDC endpoints : / authorize, / token, / userinfo, / jwks, / .well-known / openid-configuration
  • Implement SAML 2.0 Service Provider capabilities including :

    • Signed assertions and responses

  • HTTP Redirect & POST bindings
  • Metadata import / export
  • Configurable SAML attribute → OIDC claim mapping

    • Federal Identity Provider Integrations

  • Integrate with NOAA ICAM to enable CAC / PIV authentication for NOAA staff.
  • Integrate with NOAA’s Login.gov federation broker for public user authentication.

    • Legacy System Integrations

  • Build secure APIs and UI flows to link Login.gov identities with existing legacy systems :

    • PIMS (Appian) via validation-code workflow

  • GARFO Certify (REST API)
  • Store and maintain user-to-permit associations in a relational data model.
  • Implement permit-access revocation workflows for ownership changes.

    • Architecture, Testing & Deployment

  • Design relational database schema to preserve identity & authorization data.
  • Implement automated unit, integration, and load tests for all login flows.
  • Deliver containerized application builds that meet NMFS OCIO standards.
  • Provide documentation, technical training, and post-deployment support.
  • Collaborate closely with ECL development teams and NOAA operations staff.

    • Required Qualifications

    Identity & Authentication

  • 5–8+ years backend engineering experience, including 3+ years in IAM.
  • Expert-level knowledge of :

    • OpenID Connect (OIDC)

  • OAuth 2.0 / 2.1
  • SAML 2.0 federation
  • PKCE, JWT / JWS / JWKS, RS256 signing
  • Experience building or customizing :

    • Identity brokers

  • Authorization servers
  • SAML SP integrations

    • Backend Engineering

    Experience with at least one modern backend stack :

  • Java (Spring Boot)

    • or

  • Node.js (NestJS or Express)

    • Additional backend requirements :

  • REST API design and secure credential handling.
  • Relational databases (PostgreSQL / MySQL)—schema design, migrations.
  • Docker containerization and CI / CD pipelines.
  • Automated testing frameworks (JUnit, Jest, Mocha, Postman / Newman, etc.).

    • Security & Compliance

  • Experience in federal or regulated environments.
  • Understanding of CAC / PIV, MFA, FedRAMP / NIST 800-63 guidelines.

    • Preferred Qualifications

  • Prior integration experience with ICAM, Login.gov, Azure AD, or similar.
  • Experience supporting mobile / PWA apps using OIDC login.
  • Familiarity with Appian-based systems (e.g., PIMS).
  • Experience with large-scale identity consolidation or migration projects.

    • Soft Skills

  • Strong ability to document technical work for federal stakeholders.
  • Excellent communication and collaboration skills.
  • Ability to lead architecture discussions and mentor junior engineers.
  • Comfortable working independently with distributed teams.

    • What We Provide

  • Opportunity to build a mission-critical authentication platform that supports NOAA’s regulatory programs and the U.S. fishing industry.
  • Work on modern identity standards and federal-grade security architecture.
  • Collaborative environment with NOAA, NMFS, and ECL development teams.
  • Long-term engagement potential on future modernization efforts.

    • Benefits : Competitive benefits package including health, dental, vision, life insurance coverage, 401(k) plan, training programs, accrued paid time off (PTO), performance based monthly & quarterly awards, paid holidays and customer kudo rewards.

    Equal Opportunity Employer / Veterans / Disabled

    [job_alerts.create_a_job]

    Senior Iam Engineer • Silver Spring, MD, US

    [internal_linking.similar_jobs]
    Data Engineer (AI) Senior Engineer (4798) (TS / SCI) (Ft. Belvoir, VA - Nolan Bldg)

    Data Engineer (AI) Senior Engineer (4798) (TS / SCI) (Ft. Belvoir, VA - Nolan Bldg)

    Smx • Mount Vernon, Virginia, United States
    [job_card.full_time]
    Data Engineer (AI) Senior Engineer.AI / ML capabilities within Army Intelligence mission environments.This role focuses on preparing transforming, and delivering reliable data to support model traini...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Sr. Manager, Solution Architect

    Sr. Manager, Solution Architect

    Capital One • Washington, DC, US
    [job_card.full_time] +1
    Manager, Solution Architect Capital One is hiring a skilled Solutions Architect to join our exceptional team of talented technologists in the Card Partnerships segment of Card Tech.The Card Tech te...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Service Desk Engineer

    Senior Service Desk Engineer

    Bowman Williams • Columbia, MD, United States
    [job_card.full_time]
    Values-driven MSP with a strong presence in the Baltimore, Washington metro areas, and expanding into Texas.Since 1988, our company has built its success on a culture of. Systems Administrator / Sen...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Consulting Solutions Architect, Networking & Security, Federal (VA, DC)

    Consulting Solutions Architect, Networking & Security, Federal (VA, DC)

    Presidio Networked Solutions, LLC • Waldorf, MD, United States
    [job_card.full_time]
    Presidio, Where Teamwork and Innovation Shape the Future.AtPresidio, we're at the forefront of a global technology revolution, transforming industries throughcutting-edge digital solutions and next...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Vice President, Growth and Strategy - Cyber and Analytics

    Vice President, Growth and Strategy - Cyber and Analytics

    Clearance Jobs • Columbia, MD, US
    [job_card.full_time]
    Leidos is seeking an accomplished Vice President of Growth to lead business development, capture, and strategic growth activities for the Cyber & Analytics Business Area (CABA) within the Intellige...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    System CDI Physician Advisor

    System CDI Physician Advisor

    MEDSTAR HEALTH • Columbia, MD, USA
    [job_card.full_time]
    System CDI Physician Advisor at MEDSTAR HEALTH summary : .The Clinical Documentation Physician Advisor at MedStar Health plays a vital role in ensuring compliance and accuracy in clinical documentati...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Business Development Manager, Electronic Warfare and ISR

    Senior Business Development Manager, Electronic Warfare and ISR

    Maryland Staffing • Columbia, MD, US
    [job_card.full_time]
    Senior Business Development Manager, Electronic Warfare And Isr.CACI's Spectrum Superiority solutions team is searching for an experienced Senior Business Development Manager with a successful trac...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Senior AI Engineer

    Senior AI Engineer

    Cogent People • Chevy Chase, Maryland, United States
    [job_card.full_time] +1
    United States for at least 3 full years within the last 5 years.Citizen, Permanent Resident (Green Card holder), Employment Authorization Document (EAD)). Work Authorization Sponsorship (H1B Visa) : ....[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior System Engineer

    Senior System Engineer

    ClearanceJobs • Columbia, MD, United States
    [job_card.full_time]
    Federal Government, has an immediate opening for an experienced.An active TS / SCI Security Clearance with Polygraph is a MUST to apply!. Salary ranges are based on minimum education and years of expe...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Software Development Engineer

    Software Development Engineer

    Amazon • Mount Airy, MD, USA
    [job_card.full_time]
    Join Amazon's engineering team and help us build innovative solutions to complex problems.As a Software Development Engineer, you will design, develop, and test software applications and services.W...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Travel - MRI Tech

    Travel - MRI Tech

    Titan Medical (Nebraska) • Mt Airy, MD, United States
    [job_card.full_time]
    WHEN YOU WORK FOR US, WE WORK FOR YOU.With Titan Medical, you gain access to thousands of travel nursing and allied health jobs across the country. You also get unmatched service.From the moment you...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    IAM Systems Engineer

    IAM Systems Engineer

    Skill • Washington, District of Columbia, United States
    [job_card.temporary]
    Aquent is proud to partner with a leading financial institution dedicated to innovation and maintaining robust, secure operations. This organization is at the forefront of digital transformation, co...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Systems Integration Engineer

    Senior Systems Integration Engineer

    Leidos Inc • Columbia, MD, United States
    [job_card.full_time]
    Senior Systems Integration Engineer.National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operation...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior AML Consultant

    Senior AML Consultant

    Deloitte • Washington, DC, US
    [job_card.full_time]
    AML Project Delivery Specialist.Are you an experienced, passionate pioneer in technology who wants to work in a collaborative environment? As an experienced AML Project Delivery Specialist you will...[show_more]
    [last_updated.last_updated_30] • [promoted]
    SIGDEV Analyst 1

    SIGDEV Analyst 1

    RealmOne • Columbia, MD, United States
    [job_card.full_time]
    RealmOne was built on the principle that people matter first and foremost.We believe in providing a strong work / life balance by investing in our employees and encouraging professional and personal ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Solutions Architect - ISR Public Sector - DC

    Solutions Architect - ISR Public Sector - DC

    Elastic • Arlington, VA, United States
    [job_card.full_time]
    Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale - unleashing the potential of businesses and people.The Elastic Search AI...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior DevOps Engineer

    Senior DevOps Engineer

    HRUCKUS • Columbia, MD, United States
    [job_card.full_time]
    Veteran-Owned Firm Seeking a Senior DevOps Engineer with TS / SCI with a Full Scope Polygraph for an Onsite Role in Columbia, MD. I lead a Veteran-Owned management consulting firm in Washington, DC.We...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Principal ASIC Static Timing Engineer

    Senior Principal ASIC Static Timing Engineer

    Northrop Grumman • Columbia, MD, United States
    [job_card.full_time]
    RELOCATION ASSISTANCE : Relocation assistance may be available.At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]