**Req ID:** RQ170188 **Type of Requisition:** Regular **Clearance Level Must Be Able to Obtain:** None **Job Family:** Systems Engineering **Skills:** Identity Access Management (IAM),Identity Governance,Oracle Access Manager,Oracle Identity and Access Management (IAM) Operations,Oracle OpenSSO Enterprise **Experience:** 8 + years of related experience **Job Description:** At GDIT, people are our differentiator. We are seeking an **Oracle Identity Management Engineer** to join our team to support Centers for Medicare & Medicaid Services (CMS) activities at Windsor Mill, MD. As a security analyst supporting the Healthcare Integrated General Ledger Accounting System (HIGLAS) contract, you will work with a team of analysts and engineers to scrutinize network and system events for potential indicators of threats or compromise. This effort includes implementing and maintaining security safeguards designed to minimize the CMS security risk and protect confidentiality, integrity, and availability of sensitive data, including privacy information. This is a senior position on the Identity and Access Management (IAM) team and part of a larger security team responsible for establishing and maintaining a high security posture for a critical federal information system. Our team’s security responsibility includes, but not limited to, developing IT security strategy and architecture, establishing security operations and monitoring, implementing risk and vulnerability management processes, remediating weaknesses, conducting audits and assessments, maintaining all manner of IT security documentation, managing access, and enforcing Federal and organizational policies. _This position allows the opportunity to work 100% remote from home preferably in Eastern or Central time zones. Those local to the Baltimore MD area will have opportunity to come into our office as needed._ HOW YOU WILL MAKE AN IMPACT: + Functional administration and maintenance of our 12c Oracle Identity Management application including Oracle Access Manager (OAM), Oracle Internet Directory (OID), and Oracle Identity Governance (OIG). + Provide support to and participate in IAM continuous monitoring activities including monitoring new and removed identities, access and permissions changes, privilege escalation, bot activity, and other related activities. + Collaborate with cross-functional teams to provide network, infrastructure requirements and support implementation of defined solutions through Dev, Test, UAT and Production environments. + Support user access provisioning, authentication, and access management processes. + Actively participate in troubleshooting sessions. + Develop and maintain system documentation, including standard operating procedures (SOPs) and configuration guides. + Coordinate and collaborate with technical subject matter experts (SMEs) to ensure technical and operational security controls are operating as expected. WHAT YOU'LL NEED TO SUCCEED: + Bachelor’s degree and 8+ years’ experience (degree preferably in Information Technology or related field), or equivalent combination of education and experience. + Experience using and maintaining Oracle Identity Management installations. + Thorough understanding of authentication and authorization mechanisms, including Single Sign-On (SSO), identity federation, multi-factor authentication (MFA), entitlements, Security Assertion Markup Language (SAML), Open Authorization (OAuth), etc. + Strong knowledge of identity and access management, role- and attribute-based access controls, segregation of duties, least privilege, privilege escalation, etc. + Knowledge of Agile and/or DevSecOps methodologies. + Strong analytical, written, and verbal communication skills with the ability and comfort level to conduct presentations for existing customer audiences. IT WOULD BE GREAT IF YOU ALSO HAD: + Knowledge of Oracle Advanced Authentication (OAA) and/or Oracle Adaptive Risk Management (OARM). + Knowledge of WebAuthn / FIDO2, device-level signaling, and other relevant Zero Trust identity functions. + Relevant identity and access management certifications (e.g., CIAM, CIGE, etc.). + Knowledge of Splunk, including the ability to independently investigate security events as potential security incidents. + Knowledge of CMS security guidelines and technology requirements. WHAT GDIT CAN OFFER YOU IN THIS POSITION: + An opportunity to learn and grow in the cybersecurity realm while providing critical security oversight for a White House High Value Asset (HVA). + Association and inclusion on a team of dedicated security analysts and engineers, collaborating to improve the HIGLAS security program. + Exposure to new and emerging security technologies and processes. LOCATION: Remote CLEARANCE: Ability to pass CMS background check and meet the residency requirement for having resided in the US at least (3) three out of the last (5) five years. GDIT IS YOUR PLACE: + Full-flex work week to own your priorities at work and at home + 401K with company match + Comprehensive health and wellness packages + Internal mobility team dedicated to helping you own your career + Professional growth opportunities including paid education and certifications + Cutting-edge technology you can learn from + Rest and recharge with paid vacation and holidays \#GDITPriority \#GDITHealth Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee’s date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees.To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation’s most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.