Capgemini

DevOps Automation Engineer

Capgemini$120K — $155K *
Healthcare
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • U.S. Citizenship required
  • Ability to obtain Tier 4 / High Risk background investigation
  • Bachelor's degree in a relevant field
  • Relevant product certification(s) required (e.g., Saviynt, SailPoint)
  • Demonstrated healthcare IAM experience across various sectors
  • Experienced in high-volume onboarding/offboarding automation
  • Expertise in hybrid identity patterns and legacy-to-modern integration

Responsibilities

  • Design and govern identity and access management systems across environments
  • Bridge security strategy with technical implementation and mentor junior engineers
  • Implement and support cloud-based IAM governance products
  • Lead integration of legacy systems to modern solutions
  • Design and deploy access management systems including approvals and certifications
  • Build and manage operational support models and audit readiness
  • Apply AI/ML analytics tools in identity governance contexts

Benefits

  • Flexible work options
  • Comprehensive healthcare plans including dental and vision
  • 401(k) and Employee Share Ownership Plan
  • Generous paid time off and holidays
  • Paid parental leave
  • Support for family building through adoption and surrogacy
  • Access to mentoring and learning programs
  • Employee Resource Groups and community support initiatives
  • Disaster relief support
Full Job Description
Capgemini Government Solutions (CGS) LLC is seeking a highly motivated DevOps Automation Engineer to join our Federal team supporting the Department of Veterans Affairs (VA) Identity, Credential, and Access Management (ICAM) program in the DC Metro Area. This senior-level technical role designs, implements, and governs enterprise-wide systems that manage user identities and access rights, bridging security strategy and technical implementation across on-premises and cloud environments while mentoring junior engineers.

The successful candidate will be responsible for activities, such as:
  • Design, implement, and govern enterprise-wide identity and access management systems across on-premises and cloud environments
  • Bridge security strategy and technical implementation, guiding junior engineers and collaborating with stakeholders to deliver secure, compliant, and scalable access solutions
  • Implement and support cloud-based Identity Management and Access Governance products
  • Lead legacy-to-modern integration using hybrid identity patterns (on-prem and cloud), directory consolidation, application modernization waves, and identity data quality remediation
  • Design and deploy access requests, approvals, certifications, Separation of Duties (SoD) controls, role mining and role design, and connectors at scale
  • Build and lead runbooks, a Level 1-Level 3 support model, SLAs, and audit-ready evidence for access governance and privileged access
  • Implement IAM components in the cloud (e.g., AWS) with secure networking, logging, and deployment patterns
  • Apply AI/ML-assisted analytics in Saviynt or similar IGA products (e.g., access anomaly detection, certification prioritization, identity risk scoring, and role/entitlement recommendations)

Required Qualifications:
  • S. Citizenship
  • Ability to obtain and maintain a Tier 4 / High Risk background investigation (High Risk Public Trust), as required for all task areas under this contract
  • Bachelor's degree in Engineering, Computer Science, Systems, Business, Information Systems, Information Resource Management, or a related scientific discipline
  • Product certification(s), such as Saviynt, SailPoint, or equivalent
  • Demonstrated healthcare IAM delivery across all three sectors: at least one State/Local public health or Medicaid/eligibility environment, one commercial payer/provider environment, and one Federal health (or Federal health-adjacent) environment, with references tied to measurable outcomes (e.g., application onboarding volume, MFA adoption, audit findings reduced)
  • Proven multi-identity population design supporting employees, contractors, temporary staff, vendors, and affiliates/partners with distinct lifecycle rules, entitlements, and separation of duties
  • Experience with agency/department partitioning, delegated administration, and policy differences across State/Local entities and Federal components
  • Demonstrated automation for high-volume onboarding/offboarding of large contractor/temporary workforces (bulk onboarding, time-bound access, sponsor approvals)
  • Expertise implementing and supporting cloud-based Identity Management and Access Governance products
  • Expertise in legacy-to-modern integration, including hybrid identity patterns (on-prem and cloud), directory consolidation, application modernization waves, and identity data quality remediation
  • Has led at least two IAM modernization or legacy migrations (e.g., AD/LDAP rationalization, custom IAM replacement, SSO federation rollout, provisioning modernization) with a clear cutover strategy (parallel run, staged migration, rollback)
  • Operational expertise to build or lead runbooks, a Level 1-Level 3 support model, SLAs, and audit-ready evidence for access governance and privileged access
  • Expertise with designing and deploying access request, approvals, certifications, SoD controls, role mining/role design, and connectors at scale
  • Experience with applying AI/ML-assisted analytics in Saviynt and/or similar IGA products contexts (e.g., access anomaly detection, certification prioritization, identity risk scoring, role/entitlement recommendations)
  • Expertise in cloud and directory and implemented IAM components in cloud (such as AWS) with secure networking, logging, and deployment patterns
  • Expertise with the security architecture of the solution, including IAM, Cloud Security, API Security, and Data Security

Desired Qualifications:
  • Experience supporting the Department of Veterans Affairs (VA) or another large federal health agency
  • Hands-on experience with VA's incumbent ICAM stack (e.g. Saviynt, CyberArk, Microsoft Entra ID, Okta, IBM Master Data Management)
  • Master's degree in a related field

Life at Capgemini

Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer:
  • Flexible work
  • Healthcare including dental, vision, mental health, and well-being programs
  • Financial well-being programs such as 401(k) and Employee Share Ownership Plan
  • Paid time off and paid holidays
  • Paid parental leave
  • Family building benefits like adoption assistance, surrogacy, and cryopreservation
  • Social well-being benefits like subsidized back-up child/elder care and tutoring
  • Mentoring, coaching and learning programs
  • Employee Resource Groups
  • Disaster Relief

About Capgemini

Capgemini is a global leader in consulting, digital transformation, technology and engineering services. The company is headquartered in Paris, France and operates in over 50 countries. Capgemini provides a range of services including strategy and transformation, application services, technology services, and engineering services. The company serves clients in a variety of industries including automotive, consumer products, financial services, healthcare, and retail.
Learn more about Capgemini
Industry
Founded
1967
NASDAQ

Similar Jobs

More Jobs at Capgemini

More Healthcare Jobs

Find similar DevOps Automation Engineer jobs: