Azure Engineer

CGI is one of the top 5 largest global IT companies spread across 40 countries with endless opportunities to expand and grow. As a CGI Federal Member, you will have the opportunity to be a shareholder at CGI and join a family of 90,000 members strong.

CGI Federal has an exciting opportunity for an IAM Engineer (Azure) to join a CDM shared services program. You will be part of a team of cyber security working to improve the security posture of a wide range of agencies by identifying and mitigating cyber risks. The IAM Engineer will support Identity as a Service (IDaaS) and Identity and Access Management (IDAM) services and is a consultant-engineering role responsible for performing system implementation, integration, and support activities. The IAM Engineer role is the face of client delivery and is critical to delivery of services and managing client expectations day-to-day.

This position is located in our Fairfax, VA office; however, a hybrid working model is acceptable. You will be required to be in our Fairfax, VA office two days per week.


Your future duties and responsibilities
• Participate in architectural reviews and development as an IAM subject matter expert.
• Design, develop, test, implement and document workflows, custom connectors and other custom software to meet client requirements.
• Follow software design and development principles and best practices aligned with agency System Design Life Cycle (SDLC) (waterfall, Agile, iterative, hybrid, etc.).
• Direct communication with a variety of client stakeholders.
• Train and support junior IAM Engineers to learn cybersecurity tools and processes.
• Document user guides and training material to support development and deployment tasks.
• Implement Role-based Access Control (RBAC) frameworks and least privileged access models based on top down/bottom up models.
• Work closely with customer delivery managers to prioritize daily tasks.
• Provide tier 2/3 support (potentially after hours/on call) for incidents relating to security tools/solutions.
• Hands-on administration, implementation and configuration of security tools to enhance the risk posture of customer networks.
• Apply technical expertise in implementing efficiencies and creating strategies to better detect and respond to cyber incidents by prioritizing mitigation actions.
• Support IAM program requirements at federal agency client sites throughout the DC metro area.


Required qualifications to be successful in this role
• Due to the nature of the contract requirements, US citizenship and successful passing of CGI background check is required prior to beginning work. In addition, candidates must have ability to obtain and maintain a DHS EOD/Public Trust clearance.
• Bachelor's degree in engineering or related discipline and 5-8 years of related work experience.
• 3+ years of IT solution development, configuration, testing and implementation experience with IAM products.
• Must have experience with Azure.
• Must have 2+ years of experience with Okta, EntraID or SavyInt
• Working knowledge of Lightweight Directory Access Protocol (LDAP) and directory structures.
• Experience in process definition, workflow design and process mapping.
• Demonstrated ability to contribute to the development of client deliverables to include technical documentation.
• Excellent verbal and written communication skills.
• Ability and initiative to set goals and execute.
• Ability to work within a team environment with a solid work ethic.