Job DescriptionThe
IAM Developer will support the Texas Department of Public Safety on the enterprise Identity and Access Management ecosystem project. This role is responsible for designing, implementing, and maintaining a centralized identity provider framework using SAML 2.0 and OIDC for single sign-on and multi-factor authentication. The role includes building Joiner, Mover, and Leaver lifecycle workflows and onboarding enterprise applications through REST APIs. The IAM Developer will implement Role-Based Access Control models and deploy a privileged access management solution featuring secure credential vaulting, automated password rotation, and just-in-time provisioning. Ongoing responsibilities include performance tuning, troubleshooting provisioning errors and connection failures, and continued onboarding of business applications.
Responsibilities:- Design and implement the architectural framework for a centralized identity provider using SAML 2.0 and OIDC for single sign-on and multi-factor authentication.
- Build Joiner, Mover, and Leaver lifecycle workflows to support identity lifecycle management.
- Onboard enterprise applications via REST APIs.
- Implement Role-Based Access Control (RBAC) models.
- Enforce separation of duties and design certification campaigns.
- Deploy a privileged access management solution featuring secure credential vaulting.
- Configure automated password rotation and just-in-time provisioning.
- Perform ongoing performance tuning of the identity and access management ecosystem.
- Troubleshoot provisioning errors and connection failures.
- Continue onboarding of business applications on an ongoing basis.
RequirementsMinimum Qualifications:- 8 years of experience in IAM platform governance, engineering, lifecycle automation, and scripting.
- 8 years of experience in application onboarding and integrating business applications with IAM systems.
- 5 years of experience designing and implementing RBAC models, enforcing separation of duties, and designing certification campaigns.
- 5 years of experience managing centralized identity providers and configuring SSO and MFA.
- 5 years of experience managing centralized identity providers, configuring SSO, MFA, and federation protocols.
Preferred Qualifications:- 1 year of experience with SailPoint ISC implementation and operations.
Additional Requirements:- Candidates and vendors may be subject to criminal background checks as authorized by Texas law.
Work Location and Schedule:Location: 5805 N. Lamar Blvd, Austin, Texas 78752
Schedule: Monday through Friday, 8:00 AM to 5:00 PM, standard business hours; work outside normal business hours, including evenings, weekends, and holidays, may be required as requested.
Work Arrangement: Hybrid, on site and telework.