Sandia National Laboratories Jobs

Sandia National Laboratories Career Site

Job Information

Sandia National Laboratories Solutions Architect (Experienced) in Albuquerque, New Mexico

:

This posting will be open for application submissions for a minimum of seven (7) calendar days, including the ‘posting date’. Sandia reserves the right to extend the posting date at any time.

:

Are you passionate about your work and want to utilize state-of-the-art facilities to explore solutions? Do you want to join a dynamic team that solves challenging issues for the nation's security? If so, you could be the highly motivated individual we are seeking to join our team as a Solutions Architect.

In this role you will be responsible for architecting and implementing the Identity and Access Management technology platforms, processes, operations, and integrations vital in support of a multi-site, secure, collaboration network. You will support existing solutions and gain an understanding of the business, security, and technical requirements to recommend and drive improvements. This role will work with infrastructure, application, and governance partners and customers to elicit and define information system requirements for implementing and supporting highly-available, resilient solutions that provide a favorable user experience.

On any given day you may be responsible for:

  • Account Provisioning and other AD automations

  • Researching, prototyping, architecting, and designing solutions for effective operation of mission enabling or direct mission Identity and Access Management systems.

  • Resolving issues that require architectural changes.

  • Evaluating, testing, and analyzing implementation, functionality, performance, and tools of information system solutions, ensuring that requirements and acceptance criteria are met.

  • Integrating strategic and creative thinking with experience into the formulation of information system solutions and capabilities.

  • Advancing the Identity and Access Management solution space by resolving complex, difficult, or unique information system issues using creative, effective, and possibly leading-edge solutions.

  • Researching solutions for problems that span multiple domains such as information assurance, hardware, software development, systems programming, data management, database development, systems security, networking, and telecommunications.

  • Must be able to occasionally work outside of normal working hours as needed to support and resolve security needs

    Required:

  • Bachelor’s degree in Computer Science, Management Information Systems, or equivalent field plus 5 years; or equivalent combination of education and experience

  • Extensive SAML understanding and experience

  • Extensive oAuth understanding and experience

  • Experience with Active Directory

  • Ability to acquire and maintain a DOE Q level security clearance.

    Desired:

  • Kerberos

  • Reverse Proxy/Application Delivery Controller methodologies

  • Pre-Authentication or Step up/Step out Authentication

  • Kerberos delegation

  • Operating system authentication methodologies

  • Windows and Linux

  • Application authentication architectures

  • Authorization methodologies for different types of applications and data

  • IDP (identity platform), roles-based access Control (RBAC), standard user onboarding and account provisioning, privileged access management (PAM), single sign on (SSO), authentication, credential access management (CAM), user access certificate processes.

  • ADFS

  • Identity Federation methodologies and configurations

  • ForgeRock or Ping

  • Installing and maintaining backend IDP servers

  • Application and IDP integration

  • Account provisioning and SCIM interactions/deployments

  • LDAP

  • Forms based authentication principals

    Department Description:

Our department provides state-of-the-art infrastructure computing systems for the laboratory at benchmark efficiency while ensuring the highest reliability and enterprise utility. Services include infrastructure tools for application support, communications, and need-to-know authorization as well as computing resources which can be accessed, shared and utilized from anywhere on the internal, external and classified networks.

About Sandia:

Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:• Challenging work with amazing impact that contributes to security, peace, and freedom worldwide• Extraordinary co-workers• Some of the best tools, equipment, and research facilities in the world• Career advancement and enrichment opportunities• Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)• Generous vacations, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*

World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov*These benefits vary by job classification.

Security Clearance:

Sandia is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.

Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.

EEO Statement:

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.

:

Sandia demonstrates its commitment to public safety in the national interest by requiring that all new hires attest to their vaccination status before commencing employment. The requirement also applies to those who are telecommuting and working virtually.

Any concerns about the ability to meet this requirement should be directed to HR Solutions at (505) 284-4700.

DirectEmployers