Identity Infrastructure Engineer

Summary

Join Tech Holding as an experienced Identity Infrastructure Engineer to lead our cloud application Identity Provider (IdP) migration initiative. You will migrate authentication and authorization solutions from legacy systems to modern ones, ensuring seamless transitions for users and applications. This role involves designing and implementing secure identity solutions, working with a cross-functional team, and collaborating with application owners and security teams. You will need extensive experience with cloud identity services, directory services, and modern authentication systems. The ideal candidate possesses strong technical leadership, system integration, and project management skills. This position offers the opportunity to contribute to a significant migration project and work with cutting-edge technologies.

Requirements

• 5+ years of hands-on experience with AWS services
• 3+ years of experience implementing and managing identity federation solutions
• Deep knowledge of identity protocols (SAML, OAuth, OIDC, etc.)
• Strong experience with Okta, Active Directory, and LDAP
• Practical experience migrating between identity providers
• Experience with Control Tower and cross-account IAM permissions
• Proficiency in infrastructure as code tools (CloudFormation, Terraform)
• Strong scripting skills (Python, Bash, PowerShell)
• Experience with CI/CD pipelines and DevSecOps practices

Responsibilities

• Contribute to the migration paths between identity providers and directory services
• Architect solutions addressing immediate authentication requirements
• Develop comprehensive identity architecture for sunsetting legacy systems
• Ensure all solutions comply with enterprise security standards
• Troubleshoot complex identity and access management issues
• Execute migration plans across multiple applications and systems
• Integrate with various cloud services and identity providers
• Build and maintain infrastructure as code (IaC) for identity solutions
• Develop automated identity workflows and migration processes
• Document existing identity components, directory integrations, and application dependencies
• Analyze and resolve authentication path issues
• Assess identity architecture security posture and recommend improvements
• Work directly with application owners to understand and address specific authentication needs
• Coordinate with security teams to ensure compliance with security requirements
• Communicate effectively about migration status, timelines, and risk mitigation
• Provide regular status updates and documentation of completed work

Preferred Qualifications

• Familiarity with AWS Well-Architected principles
• Previous experience with enterprise-scale identity migrations
• Experience with AWS AppStream or similar virtualization/streaming technologies
• Experience with legacy application authentication refactoring
• AWS Certifications: Solutions Architect
• Security Specialty
• SysOps Administrator