Senior IAM Engineer Identity Broker ArchitectT and T Consulting Services Inc • Silver Spring, MD, US
Senior IAM Engineer Identity Broker Architect
T and T Consulting Services Inc • Silver Spring, MD, US
[job_card.1_day_ago]
[job_preview.job_type]
- [job_card.full_time]
[job_card.job_description]JWT access tokens signed with RS256 Standard OIDC endpoints : / authorize, / token, / userinfo, / jwks, / .well-known / openid-configuration Implement SAML 2.0 Service Provider capabilities including : HTTP Redirect & POST bindings Metadata import / export Configurable SAML attribute → OIDC claim mapping Integrate with NOAA ICAM to enable CAC / PIV authentication for NOAA staff. Integrate with NOAA’s Login.gov federation broker for public user authentication. Build secure APIs and UI flows to link Login.gov identities with existing legacy systems : GARFO Certify (REST API) Store and maintain user-to-permit associations in a relational data model. Implement permit-access revocation workflows for ownership changes. Design relational database schema to preserve identity & authorization data. Implement automated unit, integration, and load tests for all login flows. Deliver containerized application builds that meet NMFS OCIO standards. Provide documentation, technical training, and post-deployment support. Collaborate closely with ECL development teams and NOAA operations staff. 5–8+ years backend engineering experience, including 3+ years in IAM. Expert-level knowledge of : OAuth 2.0 / 2.1 SAML 2.0 federation PKCE, JWT / JWS / JWKS, RS256 signing Experience building or customizing : Authorization servers SAML SP integrations Java (Spring Boot) Node.js (NestJS or Express) REST API design and secure credential handling. Relational databases (PostgreSQL / MySQL)—schema design, migrations. Docker containerization and CI / CD pipelines. Automated testing frameworks (JUnit, Jest, Mocha, Postman / Newman, etc.). Experience in federal or regulated environments. Understanding of CAC / PIV, MFA, FedRAMP / NIST 800-63 guidelines. Prior integration experience with ICAM, Login.gov, Azure AD, or similar. Experience supporting mobile / PWA apps using OIDC login. Familiarity with Appian-based systems (e.g., PIMS). Experience with large-scale identity consolidation or migration projects. Strong ability to document technical work for federal stakeholders. Excellent communication and collaboration skills. Ability to lead architecture discussions and mentor junior engineers. Comfortable working independently with distributed teams. Opportunity to build a mission-critical authentication platform that supports NOAA’s regulatory programs and the U.S. fishing industry. Work on modern identity standards and federal-grade security architecture. Collaborative environment with NOAA, NMFS, and ECL development teams. Long-term engagement potential on future modernization efforts.
Job Description
Job Description
Project Overview :
We are seeking a Senior Identity & Access Management (IAM) Engineer / Identity Broker Architect to lead the design and implementation of the Logbook Identity Management Broker for OpenID (LIMBO) for NOAA. LIMBO will serve as a mission-critical identity broker enabling secure authentication for NOAA employees (via ICAM) and public users (via Login.gov), while preserving authorization and permit data stored in multiple legacy systems.
This role is ideal for an engineer who has deep hands-on experience with both OIDC and SAML 2.0 , has built authentication platforms at scale, and can successfully operate in a federal environment with CAC / PIV, MFA, and NIST-aligned requirements.
You will drive architecture, system build, integrations, security compliance, automated testing, and support for multiple mobile applications used across the U.S. fishing industry.
Key Responsibilities
Identity Broker Development
- Design and build the LIMBO identity broker that supports :
OIDC Authorization Code Flow with PKCE (S256)
Signed assertions and responses
Federal Identity Provider Integrations
Legacy System Integrations
PIMS (Appian) via validation-code workflow
Architecture, Testing & Deployment
Required Qualifications
Identity & Authentication
OpenID Connect (OIDC)
Identity brokers
Backend Engineering
Experience with at least one modern backend stack :
or
Additional backend requirements :
Security & Compliance
Preferred Qualifications
Soft Skills
What We Provide
Benefits : Competitive benefits package including health, dental, vision, life insurance coverage, 401(k) plan, training programs, accrued paid time off (PTO), performance based monthly & quarterly awards, paid holidays and customer kudo rewards.
Equal Opportunity Employer / Veterans / Disabled
[job_alerts.create_a_job]
Senior Iam Engineer • Silver Spring, MD, US
[internal_linking.similar_jobs]
District of Columbia, United States.About the job Senior AWS Solution Architect.Senior AWS Solution Architect needs 8 years of experience architecting and implementing AWS cloud solutions.AWS Certi...[show_more]
Manager, Solution Architect Capital One is hiring a skilled Solutions Architect to join our exceptional team of talented technologists in the Card Partnerships segment of Card Tech.The Card Tech te...[show_more]
Job Title : AI / ML Solutions Architect.Location : Washington, DC onsite.This role requires an expert-level blend of advanced.
Generative AI / LLMs, deep learning, and traditional ML),.The Architect will ...[show_more]
Data Solutions Architect / AI Architect.Data Solutions Architect to support our USPSOIG contract at the Arlington, Virginia.
Location : DC area with 1 Day a Week onsite in Arlington, Virginia, 20 hours...[show_more]
A leading financial services organization in Washington, DC is seeking a Senior Applications Architect to guide the Applications team in modernizing legacy platforms to a scalable, AI-enabled stack...[show_more]
A leading healthcare organization is seeking a Principal Solutions Architect to shape architectural strategy and drive the integration of advanced technologies across healthcare sectors.With respon...[show_more])
A leading cloud solutions provider is seeking a Senior Worldwide Specialist Solutions Architect focused on High Performance Computing (HPC) to help customers solve unique technical challenges in cl...[show_more]
Aquent is proud to partner with a leading financial institution dedicated to innovation and maintaining robust, secure operations.
This organization is at the forefront of digital transformation, co...[show_more])
A leading technology solutions provider in Washington seeks a highly experienced Cloud Solutions Architect to lead enterprise Microsoft technology projects.
The ideal candidate will provide strategi...[show_more]
Since 1989, SHI International Corp.We’ve grown every year since, and today we’re proud to be a $15 billion global provider of IT solutions and services.
Over 17,000 organizations worldwide rely on S...[show_more]
A leading identity management company seeks a Services Architect - CIAM to guide the design and implementation of their cloud identity platform.
The ideal candidate will have over 8 years of IT expe...[show_more]
A technology services company is seeking a Senior Computer AutoPilot Engineer to manage the imaging and deployment lifecycle using Microsoft Endpoint Configuration Manager and Intune.This role invo...[show_more]
Skillsets : Active Directory, Office 365, AWS, Scripting (PowerShell, Python), NIST 800-53 control framework, Service Now.
Education : Bachelor’s degree in Information systems or related field or an e...[show_more]
Are you interested in using your skills to help shape the Cyber, Security, & Intel space? If so, look no further.In this role you will support challenging, mission-critical projects that make a dir...[show_more]
At IntraFi, we do more than innovatewe empower.Our services help banks provide vital financial access to small businesses, companies, and consumers across the country.
With a network of more than 3,...[show_more]
A global consulting and technology firm is seeking a Varicent Solutions Architect in Maryland.The role entails leading end-to-end Varicent implementation projects and providing technology expertise...[show_more]
A leading digital services company in Columbia, Maryland is seeking a Director, Chief Solutions Architect.The ideal candidate should have over 15 years of experience, including 10 years in enterpri...[show_more]
While candidates in the listed locations are encouraged for this role we are considering folks in the Mid-Atlantic region as well.
Solutions Architect at Databricks within the Field Engineering orga...[show_more]
Senior AWS Solution Architect
Global Channel Management, Inc • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Sr. Manager, Solution Architect
Capital One • Washington, DC, US
[job_card.full_time] +1
[last_updated.last_updated_variable_days] • [promoted]
AI / ML Solutions Architect
Amtex Enterprises • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Data Solutions Architect / AI Architect
EmergencyMD • Washington, District Of Columbia, United States
[job_card.full_time]
[last_updated.last_updated_variable_hours] • [promoted] • [new]
Senior Applications Architect : Hybrid AI Modernization
Investment Company Institute • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior Health Solutions Architect—AI & Interoperability
Humana Inc • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_1_day] • [promoted]
Senior HPC Solutions Architect — Cloud & GPU Expert
Austin Bergstrom International Airport (AUS) • Bethesda, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
IAM Systems Engineer
Skill • Washington, District of Columbia, United States
[job_card.temporary]
[last_updated.last_updated_variable_days] • [promoted]
Cloud Solutions Architect – Enterprise & AI
Systems Integration, Inc. (SII) • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
ITAM Solutions Architect
SHI • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Senior CIAM Cloud Architect - Identity Platform Leader
Okta for Developers • Washington, District Of Columbia, United States
[job_card.full_time]
[last_updated.last_updated_1_day] • [promoted]
Senior AutoPilot Imaging Architect (MECM / Intune)
Peraton • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
IAM Analyst
USM • Bethesda, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Enterprise Architect - SME
Amentum • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
IAM Engineer
IntraFi • Arlington, Virginia, United States, 22201
[job_card.full_time]
[last_updated.last_updated_30]
Varicent Solutions Architect : Cloud-Driven ICM Leader
ZS • Bethesda, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior Defense Solutions Architect | Cloud & AI
eSimplicity Inc. • Columbia, MD, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Sr. Solutions Architect - Defense Industrial Base Sell Through
Databricks Inc. • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]