The Identity and Access Management (IAM) Manager is a hands-on technical leader responsible for the design, implementation, and continuous improvement of Clark’s identity ecosystem. This role balances high-level strategy with deep technical execution, serving as the lead architect and engineer for the Saviynt, Entra ID, and Okta platforms. You will not only manage the roadmap and stakeholders, but will also remain involved in the technical details—writing scripts, configuring complex SSO integrations, and building the automation frameworks that secure our enterprise.

This is a full-time onsite position based in our McLean, VA office.

Core Responsibilities

Technical Leadership & Hands-on Execution

• Architectural Oversight: Lead the technical design of IAM solutions from discovery through long-term support, ensuring all systems meet "Least Privilege" and Zero Trust standards.

• Lead Engineering: Act as the Tier 3 technical expert for the Saviynt IGA platform, personally overseeing the onboarding of complex applications and the development of custom connectors.

• Advanced Automation: Directly develop and maintain scripts (PowerShell, Python) and SQL queries to automate user provisioning, de-provisioning, and complex lifecycle workflows.

• Modern Auth Implementation: Hands-on configuration of federation protocols including SAML, OAuth, and OIDC, and managing the migration of legacy authentication to modern standards.

• Governance & Audit Lead: Partner with Internal Audit to automate access certifications and provide technical evidence for compliance requirements across all enterprise systems.

• Platform Health: Take ultimate accountability for the stability of SSO platforms, participating in bimonthly maintenance and troubleshooting the most critical technical escalations.

Strategic & Managerial Responsibilities

• Roadmap Execution: Drive the planning and technical execution of IAM technology enhancements and long-term security roadmaps.

• Mentorship & Coaching: Coach and upskill team members on IAM best practices, peer-reviewing technical changes to ensure alignment with Clark standards.

• Standardization: Create and enforce engineering standards for documentation, IAM procedures, and infrastructure-as-code.

• Cross-Functional Collaboration: Engage with Business Application Owners and SMEs to translate business requirements into technical IAM specifications.

Basic Qualifications

• Experience: 8+ years of dedicated, hands-on IAM experience.

• People Leadership: 3+ years of demonstrated experience leading technical teams, including direct people management (hiring, performance reviews, and career development) and serving as a technical mentor for junior engineers in high-pressure environments.

• Core Protocols: Expert-level proficiency in APIs, SCIM, SAML, and OIDC.

• Logic & Data: Advanced experience with SQL and Scripting (PowerShell/Python) for identity automation.

• Platform Expertise: Deep administrative experience in Saviynt (or SailPoint), Entra ID, and Okta.

• Soft Skills: Proven ability to collaborate across business units, engage with stakeholders, and drive results while remaining adaptable and accountable.

• Presence & Availability: Ability to work in the office 5 days/week and participate in bimonthly maintenance windows as required.

Preferred Qualifications

• Security Integration: Experience integrating IAM platforms with ServiceNow for ticketing automation and CyberArk for privileged access.

• Analytical Skills: Ability to develop advanced reporting and telemetry for IT and Business stakeholders.