Insight Global is seeking a highly experienced IAM Architect / Senior IAM Engineer to lead a comprehensive modernization and consolidation of our enterprise Identity and Access Management (IAM) environment. This is a strategic initiative focused on integrating Active Directory with Microsoft Entra ID, consolidating SSO and MFA to Okta, retiring legacy systems like LDAP and MIM, and enhancing privileged access management.
As the IAM Architect / Senior IAM Engineer, you will play a central role in driving the modernization of our identity infrastructure. Your daily work will involve collaborating with cross-functional teams to assess and document the current IAM environment, including Active Directory, MIM, LDAP, CyberArk, Okta, and various MFA solutions. Youll lead technical discovery sessions, analyze configurations, and identify opportunities for consolidation and improvement.
Youll design and implement a future-state IAM architecture that aligns with zero trust principles and the principle of least privilege. This includes developing and deploying Conditional Access policies in Microsoft Entra ID and Okta, and overseeing the migration of identity lifecycle processes from legacy systems like MIM and LDAP to modern platforms.
On a typical day, you might be planning and executing the decommissioning of outdated IAM systems, leading workshops to define RBAC models, or coordinating with security teams to apply STRIDE threat modeling to both current and future architectures. Youll also be responsible for managing the upgrade or replacement of CyberArk, ensuring privileged access is secure and auditable.
Throughout the engagement, youll maintain detailed documentation, create operational runbooks, and deliver training sessions to ensure a smooth handover to internal teams.
This position will pay between $60- $70/ Hour. Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
7- 10 years of hands-on experience in IAM architecture and engineering.
Deep expertise in:
Active Directory (including Group Policy, Sites & Services, OU structure)
Microsoft Entra ID (formerly Azure AD)
Microsoft Identity Manager (MIM)
Okta (SSO, MFA, Universal Directory)
CyberArk or equivalent PAM solutions
LDAP systems (OpenLDAP, Oracle Unified Directory, etc.)
MFA technologies (Google MFA, Okta Verify, etc.)
Strong understanding of IAM governance, compliance (e.g., SOX, HIPAA, NIST), and security best practices.
Experience with hybrid cloud environments and identity synchronization (Azure AD Connect, Cloud Sync).
Familiarity with STRIDE threat modeling and IAM policy design.
Microsoft Certified: Identity and Access Administrator Associate or equivalent.
Okta Certified Professional or Administrator.
Experience with Intune, Group Policy modernization, and Entra ID Conditional Access.
Prior experience leading IAM transformation projects in global enterprises.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.