Senior IAM Engineer Identity Broker ArchitectT and T Consulting Services Inc • Silver Spring, MD, US
Senior IAM Engineer Identity Broker Architect
T and T Consulting Services Inc • Silver Spring, MD, US
[job_card.variable_days_ago]
[job_preview.job_type]
- [job_card.full_time]
[job_card.job_description]JWT access tokens signed with RS256 Standard OIDC endpoints : / authorize, / token, / userinfo, / jwks, / .well-known / openid-configuration Implement SAML 2.0 Service Provider capabilities including : HTTP Redirect & POST bindings Metadata import / export Configurable SAML attribute → OIDC claim mapping Integrate with NOAA ICAM to enable CAC / PIV authentication for NOAA staff. Integrate with NOAA’s Login.gov federation broker for public user authentication. Build secure APIs and UI flows to link Login.gov identities with existing legacy systems : GARFO Certify (REST API) Store and maintain user-to-permit associations in a relational data model. Implement permit-access revocation workflows for ownership changes. Design relational database schema to preserve identity & authorization data. Implement automated unit, integration, and load tests for all login flows. Deliver containerized application builds that meet NMFS OCIO standards. Provide documentation, technical training, and post-deployment support. Collaborate closely with ECL development teams and NOAA operations staff. 5–8+ years backend engineering experience, including 3+ years in IAM. Expert-level knowledge of : OAuth 2.0 / 2.1 SAML 2.0 federation PKCE, JWT / JWS / JWKS, RS256 signing Experience building or customizing : Authorization servers SAML SP integrations Java (Spring Boot) Node.js (NestJS or Express) REST API design and secure credential handling. Relational databases (PostgreSQL / MySQL)—schema design, migrations. Docker containerization and CI / CD pipelines. Automated testing frameworks (JUnit, Jest, Mocha, Postman / Newman, etc.). Experience in federal or regulated environments. Understanding of CAC / PIV, MFA, FedRAMP / NIST 800-63 guidelines. Prior integration experience with ICAM, Login.gov, Azure AD, or similar. Experience supporting mobile / PWA apps using OIDC login. Familiarity with Appian-based systems (e.g., PIMS). Experience with large-scale identity consolidation or migration projects. Strong ability to document technical work for federal stakeholders. Excellent communication and collaboration skills. Ability to lead architecture discussions and mentor junior engineers. Comfortable working independently with distributed teams. Opportunity to build a mission-critical authentication platform that supports NOAA’s regulatory programs and the U.S. fishing industry. Work on modern identity standards and federal-grade security architecture. Collaborative environment with NOAA, NMFS, and ECL development teams. Long-term engagement potential on future modernization efforts.
Job Description
Job Description
Project Overview :
We are seeking a Senior Identity & Access Management (IAM) Engineer / Identity Broker Architect to lead the design and implementation of the Logbook Identity Management Broker for OpenID (LIMBO) for NOAA. LIMBO will serve as a mission-critical identity broker enabling secure authentication for NOAA employees (via ICAM) and public users (via Login.gov), while preserving authorization and permit data stored in multiple legacy systems.
This role is ideal for an engineer who has deep hands-on experience with both OIDC and SAML 2.0 , has built authentication platforms at scale, and can successfully operate in a federal environment with CAC / PIV, MFA, and NIST-aligned requirements.
You will drive architecture, system build, integrations, security compliance, automated testing, and support for multiple mobile applications used across the U.S. fishing industry.
Key Responsibilities
Identity Broker Development
- Design and build the LIMBO identity broker that supports :
OIDC Authorization Code Flow with PKCE (S256)
Signed assertions and responses
Federal Identity Provider Integrations
Legacy System Integrations
PIMS (Appian) via validation-code workflow
Architecture, Testing & Deployment
Required Qualifications
Identity & Authentication
OpenID Connect (OIDC)
Identity brokers
Backend Engineering
Experience with at least one modern backend stack :
or
Additional backend requirements :
Security & Compliance
Preferred Qualifications
Soft Skills
What We Provide
Benefits : Competitive benefits package including health, dental, vision, life insurance coverage, 401(k) plan, training programs, accrued paid time off (PTO), performance based monthly & quarterly awards, paid holidays and customer kudo rewards.
Equal Opportunity Employer / Veterans / Disabled
[job_alerts.create_a_job]
Senior Iam Engineer • Silver Spring, MD, US
[internal_linking.similar_jobs]
Data Engineer (AI) Senior Engineer.AI / ML capabilities within Army Intelligence mission environments.This role focuses on preparing transforming, and delivering reliable data to support model traini...[show_more]
AML Project Delivery Specialist.Are you an experienced, passionate pioneer in technology who wants to work in a collaborative environment? As an experienced AML Project Delivery Specialist you will...[show_more]
Lead the architecture design and deployment of Apache Kafka-based platforms.Define best practices and standards for Kafka implementation integration and security across the organization.Collaborate...[show_more]
We are looking for an experienced Power BI Developer to join our team.This is a remote-friendly role based in Eastern time zone.
This role involves assessing data sources, developing queries and cre...[show_more]
We are seeking a purpose-driven.This role is ideal for someone who not only excels in designing AI solutions but also believes in.
You will architect end-to-end AI solutions guide nonprofit teams in...[show_more]
Additional pay available based on project performance.Freelance / 1099 contract — not an internship.Flexible hours — you choose when and how much to work.
Weekly via our secure platform.Outlier, a pla...[show_more]
RELOCATION ASSISTANCE : Relocation assistance may be available.At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the...[show_more]
Identity and Access Management Engineer.Under general supervision and / or direction the incumbent is responsible for the planning building delivery and support of the Identity and Access Management ...[show_more]
This individual will collaborate across various domains to create integrated solutions exposed through partners web mobile smart devices and voice channels.
The ideal candidate will have a strong tr...[show_more]
We are looking for an experienced Power BI Developer to join our team.This is a remote-friendly role based in Eastern time zone.
This role involves assessing data sources, developing queries and cre...[show_more]
Job Title : FIPS 140 Security Engineer Location : Columbia, MD (Remote) Compensation : $60.HR Duration : 6 month contract to hire In joining the team, you will get an exciting opportunity to work in th...[show_more]
IT Enterprise Architecture Modeler.National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations...[show_more]
Mercor is partnering with a cutting-edge AI research lab to hire a • •Senior Data / Analytics Engineer • • with expertise across • •DBT • • and • •Snowflake’s Cortex CLI • •.
In this role, you will build and s...[show_more]
Job Title : Solutions Architect.We are looking for a talented and experienced Solutions Architect / Enterprise Architect to join our team.
The ideal candidate will have a strong understanding of ente...[show_more]
Xometry (NASDAQ : XMTR) powers the industries of today and tomorrow by connecting the people with big ideas to the manufacturers who can bring them to life.
Xometrys digital marketplace gives manufac...[show_more]
AML Project Delivery Specialist.Are you an experienced, passionate pioneer in technology who wants to work in a collaborative environment? As an experienced AML Project Delivery Specialist you will...[show_more]
National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, A...[show_more]
The Lead Architect candidate will have the ability to execute and lead all project types through design documentation and construction administration as part of a multi-disciplinary team.This posit...[show_more]
Data Engineer (AI) Senior Engineer (4798) (TS / SCI) (Ft. Belvoir, VA - Nolan Bldg)
Smx • Mount Vernon, Virginia, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Senior AML Consultant
Virginia Staffing • Arlington, VA, US
[job_card.full_time]
[last_updated.last_updated_1_day] • [promoted]
Kafka Architect
Apptad Inc • Bethesda, Maryland, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior Power BI Developer
DCS Corp • Alexandria, VA, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
AI Solution Architect
Snowrelic Inc • Silver Spring, Maryland, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
AI Annotation Specialist
Outlier • Columbia, MD, United States
[job_card.full_time]
[last_updated.last_updated_1_day] • [promoted]
Senior Principal ASIC Static Timing Engineer
Northrop Grumman • Columbia, MD, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Identity and Access Management Engineer
Serigor Inc. • Rockville, Maryland, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Solution Architect – UGI
Marriott Hotels Resorts • Bethesda, Maryland, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior Power BI Developer
DCS Corporation • Alexandria, Virginia, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
FIPS 140 Security Engineer
ALTA IT Services • Columbia, MD, US
[job_card.temporary]
[last_updated.last_updated_30] • [promoted]
IT Enterprise Architecture Modeler
Leidos Inc • Bethesda, MD, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Remote Senior Data Engineer / Analytics Engineer (India-Based) - AI Trainer ($35-$70 per hour)
Mercor • Alexandria, Virginia, US
[filters.remote]
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Solutions ArchitectEnterprise Architect with IRS MBI clearance
3M Consultancy • Washington D.C., District of Columbia, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Associate Solutions Engineer
Xometry • North Bethesda, Maryland, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior AML Consultant
Deloitte • Washington, DC, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Senior AI / ML Engineer (SWE-3)
Leidos • Columbia, MD, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Architect IV
CRB • Rockville, Maryland, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]