Sr. IAM Engineer

Please review the job details below. Lanteris Space Systems is seeking an experienced Identity and Access Management (IAM) Engineer to lead the transition and ongoing management of our enterprise IAM program. This role can be based remotely in the US. This position will play a pivotal role as we shift responsibility from our sister company's managed services to an in-house IAM team. The ideal candidate will be responsible for creating transition plans, implementing integrations, and performing configuration and administration across our identity ecosystem. We're looking for a hands-on expert who can establish IAM operational standards, optimize directory services, manage access lifecycles, ensure cloud security, and maintain compliance with regulatory frameworks. If you have deep expertise in Active Directory, Entra ID/Azure AD, and cloud IAM technologies, with a strong background in governance and automation, we want to hear from you. Key Responsibilities: Program Transition and Ownership Lead the in-sourcing and knowledge transfer process from the current managed service provider. Establish IAM operational standards, processes, and documentation for internal management. Design and implement IAM governance aligned with corporate cybersecurity and compliance frameworks. Identity Platform Administration Administer and optimize Active Directory (AD), Azure AD / Entra ID, LDAP, and Group Policy Objects (GPOs). Manage domain join policies, trust relationships, and directory synchronization. Configure and maintain Multi-Factor Authentication (MFA), conditional access, and passwordless authentication mechanisms. Access Lifecycle Management Oversee user provisioning, deprovisioning, and access reviews across enterprise systems (cloud, on-prem, SaaS). Integrate IAM with HR and ITSM systems for automated identity lifecycle workflows. Define and enforce least-privilege access and role-based access control (RBAC) models. Cloud and Application Security Manage IAM integrations with AWS IAM, Azure, and SaaS applications using SAML, OIDC, and OAuth. Ensure consistency of IAM policies across hybrid and multi-cloud environments. Work closely with enterprise architects to design secure authentication and authorization patterns. Monitoring and Continuous Improvement Implement IAM-related threat detection and auditing processes. Maintain compliance with regulatory frameworks (e.g., NIST 800-53, NIST 800-171, CMMC, ISO 27001). Continually evaluate IAM solutions for modernization, automation, and risk reduction. Required Qualifications: Must be a US Citizen or US Person Bachelor's Degree in the following area(s): Computer Science, Cybersecurity, or related field. Four additional years of experience may be substituted for a degree Minimum of 8 years of hands-on experience in IAM engineering or architecture roles. Experience with Active Directory, Entra ID/Azure AD, LDAP, MFA, and SSO technologies. Experience in cloud IAM (AWS, Azure, GCP) and federated identity management. Experience integrating identity platforms with SaaS and on-premises applications. Experience with identity governance and administration (IGA) tools and best practices. Experience in scripting languages (e.g., PowerShell, Python) for IAM automation. Preferred Qualifications: Professional certifications such as CISSP, Microsoft Certified: Identity and Access Administrator Associate, AWS Certified Security – Specialty, or similar. Experience implementing or managing IAM components within regulated or DoD/CMMC environments. Strong collaboration skills and ability to guide cross-functional teams through complex IAM transitions. In support of pay transparency at Lanteris Space Systems, we disclose salary ranges on all U.S. job postings. The successful candidate’s starting pay will fall within the salary range provided below and is determined based on job-related factors, including, but not limited to, the experience, qualifications, knowledge, skills, geographic work location, and market conditions. Candidates with the minimum necessary experience, qualifications, knowledge, and skillsets for the position should not expect to receive the upper end of the pay range. ● The base pay for this position within Colorado is: $124,000.00 - $206,000.00 annually. ● The base pay for this position within New Jersey is: $124,000.00 - $206,000.00 annually. ● The base pay for this position within Delaware is: $124,000.00 - $206,000.00 annually. ● The base pay for this position within the Washington, DC metropolitan area is: $137,000.00 - $228,000.00 annually. ● The base pay for this position within California is: $143,000.00 - $238,000.00 annually. For all other states, we use geographic cost of labor as an input to develop market-driven ranges for our roles, and as such, each location where we hire may have a different range. We offer a comprehensive package of benefits including paid time off, health and welfare insurance, and 401(k) to eligible employees. More information on our benefits will be shared with candidates as they move forward in the recruitment process. Additionally, this position is incentive eligible with a target based on contribution, company performance, and/or individual results achieved; the specific incentive plan and target amount will be determined based on the role and breadth of contributions. The application window is three days from the date the job is posted and will remain posted until a qualified candidate has been identified for hire. If the job is reposted regardless of reason, it will remain posted three days from the date the job is reposted and will remain reposted until a qualified candidate has been identified for hire. The date of posting can be found on the Lanteris Space Systems Career page at the top of each job posting. To apply, submit your application via the Lanteris Space Systems Career page. Lanteris Space Systems values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law. Apply To This Job