Identity and Access Management (IAM) Engineer

Symmetrio is actively seeking multiple Identity and Access Management (IAM) Engineers on behalf of our client, a large enterprise organization based in Philadelphia, PA. In this role, you will lead the design, deployment, and management of identity platforms including Okta, Microsoft Entra ID (Azure AD), and related IAM tools. You’ll collaborate closely with infrastructure teams and stakeholders to automate user lifecycle processes, implement secure authentication methods, and enforce access governance at scale. This is a pivotal role in enterprise security design, ideal for individuals who excel at integrating secure architecture with seamless user experience

This is a full-time hybrid role based in Philadelphia, with 1–2 days a week onsite. The salary range is $110K to $130K, depending on experience.

• Design, deploy, and maintain IAM solutions, including SSO, MFA, identity lifecycle management, and privileged access management.
• Administer and optimize Okta and Entra ID environments, including user provisioning, authentication policies, and integration with SaaS and on-premise applications.
• Lead integration of applications into SSO platforms using SAML, OIDC, OAuth, and SCIM standards.
• Develop and maintain automation scripts (e.g., PowerShell, Python) for identity provisioning, de-provisioning, and synchronization across systems.
• Collaborate with HR, IT, and security teams to align identity governance with business processes, onboarding/offboarding, and role-based access controls (RBAC).
• Configure and enforce multi-factor authentication (MFA) and conditional access policies across cloud and on-premise systems.
• Work with security and compliance teams to ensure IAM controls support audit, compliance (e.g., SOX, HIPAA), and risk management initiatives.
• Support incident response and troubleshooting of IAM-related issues, including access anomalies and security events.
• Provide technical documentation, training, and support for IAM tools and processes.
• Evaluate and implement new IAM technologies and continuously improve existing systems for better performance, usability, and security posture.

• 5+ years of professional experience in IAM or a related IT security role.
• Proven experience managing and configuring:
• Okta Identity Cloud (SSO, Universal Directory, Lifecycle Management)
• Microsoft Entra ID (Azure AD) including Conditional Access, MFA, and Identity Protection
• Azure IaaS/PaaS identity configurations and RBAC

• Strong understanding of IAM protocols: SAML, OAuth2, OIDC, SCIM.
• Experience integrating cloud/SaaS and on-premise applications with IAM platforms.
• Familiarity with Active Directory (AD), LDAP, and directory synchronization.
• Experience with PowerShell or other scripting languages for automation.
• Knowledge of Zero Trust Architecture, Identity Governance & Administration (IGA), and least privilege principles.
• Solid understanding of compliance frameworks such as HIPAA, NIST, SOX, or ISO 27001.
• Ability to work cross-functionally and communicate complex technical topics to non-technical stakeholders.

• Health Care Plan (Medical, Dental & Vision)
• 401k Retirement Plan (4% match)
• Paid Time Off (Vacation, Public Holidays)