About Sandia:

Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:

• Challenging work with amazing impact that contributes to security, peace, and freedom worldwide
• Extraordinary co-workers
• Some of the best tools, equipment, and research facilities in the world
• Career advancement and enrichment opportunities
• Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)
• Generous vacation, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*

World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov

*These benefits vary by job classification.

What Your Job Will Be Like:

We are seeking an experienced Solutions Architect to join our dynamic team responsible for managing a large-scale enterprise Product Data Management (PDM) system. This system delivers best-in-class engineering solutions that support our Nuclear Deterrence (ND) and Nuclear Security Enterprise (NSE) customers.

On any given day, you may be called on to:

• Lead architecture and implementation of Identity Management solutions using SailPoint IdentityIQ, ForgeRock IDM, Ping Federate, and related technologies.
• Manage identity provisioning, lifecycle, and account/group management applications.
• Develop automation scripts (PowerShell, Java, Python, C++) to optimize processes and ensure data integrity.
• Oversee vulnerability patch management and SSL/SSO certificate lifecycle for IAM environments.
• Collaborate with cross-functional teams to design and improve IAM workflows and automation.
• Maintain documentation related to IAM processes, policies, and system configurations.
• Monitor production services and respond to system issues promptly.
• Ensure compliance with NIST protocols and DOE security standards.
• Collaborate with infrastructure, application, and governance teams to support enterprise identity services.

*The selected applicant will work a hybrid schedule, combining onsite and remote work. They must reside within a reasonable commute distance to the assigned work location and be available to work onsite at least three days per week.

Salary Range:

$117,500 - $235,700

*Salary range is estimated, and actual salary will be determined after consideration of the selected candidate's experience and qualifications, and application of any approved geographic salary differential.

Qualifications We Require:

• Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience); Plus a minimum 5 years of experience in Identity Access Management.
• Advanced knowledge in at least one of the following solutions: SailPoint IdentityIQ, ForgeRock IDM, Ping Federate or EntraID.
• Strong scripting/programming skills in PowerShell, Java, Python, or C++.
• Red Hat Enterprise Linux experience.

Qualifications We Desire:

• Understanding of identity federation methodologies and configurations.
• Excellent communication and collaboration skills.
• Experience with secure EntraID identity solutions with Conditional Access policies.
• Advanced knowledge of identity federation, HTTP, XML, REST, SCIM protocols.
• Experience with web application development frameworks (Angular, React).
• Strong understanding of encryption algorithms and security best practices.
• Understanding of authentication protocols (SAML, OAuth, OpenID Connect) and directory services (LDAP).
• Experience managing identities in cloud platforms (AWS IAM, Azure AD, Google Cloud IAM).

About Our Team:

Department 9784 Enterprise Management Services is a trusted efficient IT services provider and technology partner. Our standard is to deliver critical reliable services to our customers in Mobile Classified Computing, Corporate Enterprise Backups, ESN Operations, ESN Supply Chain & Software Assurance, and Control M Batch Schedule Application.

Posting Duration:

This posting will be open for application submissions for a minimum of three (3) calendar days, including the 'posting date'. Sandia reserves the right to extend the posting date at any time.

Security Clearance:

Sandia is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.

Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.

EEO:

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.

NNSA Requirements for MedPEDs:

If you have a Medical Portable Electronic Device (MedPED), such as a pacemaker, defibrillator, drug-releasing pump, hearing aids, or diagnostic equipment and other equipment for measuring, monitoring, and recording body functions such as heartbeat and brain waves, if employed by Sandia National Laboratories you may be required to comply with NNSA security requirements for MedPEDs.

If you have a MedPED and you are selected for an on-site interview at Sandia National Laboratories, there may be additional steps necessary to ensure compliance with NNSA security requirements prior to the interview date.

Job ID: 698066

Job Family: IT

Regular/Temporary Position: R

Full/Part-Time Status: F