Job Description

IAM Engineer (SailPoint / CyberArk / Okta)

Location: Dallas, TX (Onsite)
Employment Type: 12-Month Contract-to-Hire
Industry: Financial Services / Banking

Overview

A financial services client in the Dallas area is seeking a hands-on IAM Engineer for a contract-to-hire opportunity. This is a true engineering role—not governance or process-heavy—focused on building, integrating, and supporting enterprise IAM and PAM solutions.

You’ll work directly on identity platforms, access controls, and privileged account security across both on-prem and cloud environments.

Key Responsibilities

IAM Engineering & Administration

• Design, implement, and support Identity & Access Management solutions across enterprise systems
• Work hands-on with SailPoint, Okta, and CyberArk for identity governance and privileged access
• Manage and enhance authentication systems including MFA, SSO, and federation
• Integrate applications into IAM platforms (onboarding/offboarding, access provisioning)
• Administer Active Directory and Azure AD for identity lifecycle management

Privileged Access Management (PAM)

• Implement and manage CyberArk (or similar) for privileged account security
• Handle account onboarding, vaulting, session management, and least-privilege enforcement
• Monitor and audit privileged access activity

Access Controls & Security

• Develop and enforce access control policies and standards
• Perform access reviews, certifications, and remediation
• Tune and optimize conditional access policies (risk-based access, device compliance, MFA)

Security Monitoring & Support

• Support incident response related to identity and access issues
• Analyze logs and IAM-related security events
• Partner with security and infrastructure teams to improve visibility and controls

Collaboration

• Work with application teams to onboard systems into IAM solutions
• Partner with security, compliance, and infrastructure teams across the organization

Required Qualifications

• 5+ years of hands-on IAM engineering experience
• Strong experience with:
  • SailPoint (IdentityIQ or IdentityNow)
  • CyberArk (or similar PAM tools)
  • Okta (SSO, MFA, federation)
• Experience with Active Directory and Azure AD / Entra ID
• Hands-on experience implementing SSO, MFA, and identity federation
• Experience integrating applications into IAM platforms
• Scripting/automation experience (PowerShell, Python, etc.)

Preferred Qualifications

• Experience in financial services or regulated environments
• Familiarity with cloud platforms (Azure, AWS, GCP)
• Exposure to SIEM tools (Splunk, LogRhythm, etc.)
• Understanding of compliance frameworks and access governance
• Relevant certifications (CISSP, CISM, CCSP, etc.)