Job Description :
Position: IAM Engineer (AD Migration)
Experience: 10+ years
Domain: IAM, SSO/MFA, AD Migration, Okta, SailPoint, PowerShell.
Job Location: Remote (working PST hours)
Project Duration: 1+ years
Responsibilities:
IAM Engineer with expertise in Active Directory migration, SSO/MFA onboarding, and integration across enterprise IAM platforms.
Migrate identity objects between domains, onboarding critical applications, and ensuring secure, compliant access controls across the environment.
Assess existing directory schemas and identity repositories across AD domains.
Migrate user accounts, groups, GPOs, policies, and other AD objects between domains.
Validate AD functionality, performance, replication, and security post-migration.
Onboard new applications to SSO/MFA platforms (Okta, Entra ID).
Establish RBAC, ABAC, and PAM controls aligned with enterprise access policies.
Integrate applications with IGA platforms (SailPoint).
Support design, configuration, testing, and go-live activities across IAM platforms.
Build and maintain PowerShell scripts for automation and reporting.
Required Skills:
Strong hands-on experience with IAM platforms (Okta, SailPoint, Entra ID, Delinea/PAM).
Proven expertise with Active Directory Domain Services and AD object migrations.
Advanced PowerShell scripting for automation and AD management.
Experience integrating applications into SSO, MFA, and IGA platforms.
Understanding of identity governance, entitlement modeling, and access policies.
Experience with hybrid identity environments.
Azure AD Connect knowledge.
PAM tool experience (CyberArk, Delinea).
Certifications (Okta, SailPoint, Microsoft, etc.)