IAM Engineer

Company: The Computer Merchant, LTD.
Location: Braintree
Posted on: April 17, 2025

Job Description:

JOB TITLE: IAM Engineer

Please ensure you read the below overview and requirements for this employment opportunity completely.
JOB LOCATION: Braintree, MA
WAGE RANGE*: $55-$60/hr
JOB NUMBER: Client-25-1062-LOT-LOTDO-115324

REQUIRED EXPERIENCE: Must be able to travel to Lottery offices statewide and/or other locations, as required.
Ability to provide on-call support for IAM issues during critical events.


PREFERRED QUALIFICATIONS 5+ years of experience in Identity and Access Management (IAM) with a focus on Microsoft Entra ID (Azure AD), Active Directory, and SSO integration.
Experience with SSO technologies including SAML, OAuth, and OpenID Connect.
Strong understanding of Active Directory architecture, including forests, domains, trusts, and replication.
Hands-on experience with MFA, conditional access policies, and identity protection.
Familiarity with regulatory compliance frameworks such as PCI, 201 CMR 17, and NIST.
Experience in identity lifecycle management, including provisioning, de-provisioning, and access reviews.
Strong problem-solving and troubleshooting skills with IAM systems.
Relevant certifications such as Microsoft Certified: Azure Solutions Architect Expert, CISSP, or Certified Identity and Access Manager (CIAM) preferred


JOB DESCRIPTION

The Identity and Access Management (IAM) Engineer will be responsible for implementing, managing, and maintaining the identity and access management infrastructure for the Massachusetts State Lottery Commission. This role will focus on ensuring secure, efficient, and scalable access to digital resources while supporting business objectives and maintaining compliance with security standards.

The IAM Engineer will work with Microsoft Entra ID (Azure AD), Active Directory, and Single Sign-On (SSO) technologies to enable secure user access and enforce the principle of least privilege across various platforms and applications. The ideal candidate will have a strong technical background in identity and access management and be able to support and troubleshoot complex IAM-related issues.

ESSENTIAL FUNCTIONS IAM Implementation and Administration:Assist in designing, configuring, and managing the IAM framework using Microsoft Entra ID (Azure AD), Active Directory, and SSO technologies.
Ensure alignment of IAM policies and processes with business and security requirements.


Active Directory and Entra ID Management:Support the administration and maintenance of Active Directory forests, domains, trusts, and replication models.
Manage and optimize Microsoft Entra ID services, including MFA, conditional access, and identity protection.
Ensure high availability, scalability, and security of directory services.


SSO Configuration and Support:Configure and support SSO solutions using protocols like SAML, OAuth, and OpenID Connect.
Integrate SSO with cloud and on-premises applications to provide seamless authentication and secure access.


Security and Compliance:Enforce security best practices, including role-based access control (RBAC), access policies, and identity governance.
Monitor and ensure compliance with relevant regulatory standards, such as PCI, NIST, and 201 CMR 17.
Conduct regular risk assessments, security reviews, and audits to ensure a secure IAM environment.


Identity Lifecycle Management:Manage user provisioning, de-provisioning, and access reviews across systems and applications.
Automate and improve IAM workflows to enhance efficiency and security. 3 of 3 4/6/


Technical Support and Collaboration:Troubleshoot and resolve IAM-related issues, including SSO failures and directory integration issues.
Work closely with cybersecurity, IT, and application teams to ensure seamless identity and access management.
Provide technical guidance to other teams on IAM best practices.


Documentation and Reporting:Develop and maintain technical documentation for IAM configurations and processes.
Report IAM performance and issues to senior management and stakeholders




Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities

* While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including but not limited to: job-related knowledge, skills and qualifications, education and experience as compared to others in the organization doing substantially similar work, if applicable, and market and business considerations. Benefits offered include medical, dental and vision benefits; dependent care flexible spending account; 401(k) plan; voluntary life/short term disability/whole life/term life/accident and critical illness coverage; employee assistance program; sick leave in accordance with regulation. Benefits may be subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions.

Keywords: The Computer Merchant, LTD., Portland , IAM Engineer, Engineering , Braintree, Maine