Computer Systems Engineer Architect (Remote)

Published date Posted on Indeed on Jun 21, 2022 (8 d ago)

Lentech is looking for an Identity and Directory Management Services Engineer to support the design, administration, management, execution & maintenance of GSA’s Identity & Directory Management Services (IDMS) and Identity, Credential, and Access Management (ICAM) solutions to meet the needs of the enterprise users & the enterprise architecture. These services, systems, and capabilities include, but not limited to, directory services management, ICAM, privileged account management, Single Sign-On (SSO), Active Directory (AD) Domain Name System (DNS) services, Public Key Infrastructure (PKI), Multi-Factor Authentication (MFA), auditing and log management, Continuous Diagnostics and Mitigation/Dynamic and Evolving Federal Enterprise Network Defense (CDM/DEFEND), and the management of appliances. GSA IT currently leverages Microsoft (MS) AD as the authoritative account management system.

The CyberArk Engineer shall perform the following (to include but not limited to) activities:

  • Installation, integration, and deployment of CyberArk solutions.
  • CyberArk Suite including but not limited to provisioning for: Application Identity Manager (AIM), Enterprise Password Vault (EPV), Privileged Session Manager (PSM), Privileged Threat Analytics (PTA), and Discovery and Analysis tool.
  • Responsible for Privileged User account administration of various Windows and UNIX accounts using CyberArk components.
  • Good functional understanding of CyberArk with experience in creating accounts, safes and customized platforms in CyberArk coupled with account management operations expertise (includes concept of verification and reconciliation).
  • Perform health check monitoring on all CyberArk servers to ensure consistent availability of the system to the end-user.
  • Extensive knowledge of privileged access management solutions, particularly CyberArk, and relevant cybersecurity controls.
  • Extensive knowledge of CyberArk components: EPV, PVWA, CPM, PSM, PSMP, PTA, AAM.
  • Act as lead or supporting deployment engineer on CyberArk deployment projects.
  • Ensure requirements are gathered, processes defined, and use cases documented.
  • Help continue to build and improve the CyberArk service catalog (Knowledge Base).
  • Responsible for Privileged User account administration of various Windows and Linux accounts using CyberArk components.
  • Integrating various platforms with CyberArk, such as different LDAP providers, Windows servers, UNIX servers, Databases, and networking Devices.
  • Central Policy Manager (CPM) policies management or redistribution.
  • Knowledge on CPM and PSM connector customization.
  • Test and certify new product versions, bug fix and provide detailed reports.
  • Ability to install, troubleshoot & deliver artifacts around CyberArk CorePAS solution including Enterprise Password Vault (EPV), Central Policy Manager (CPM), Password Vault Web Access (PVWA), Privileged Session Manager (PSM) & Privileged Session Manager Proxy (PSMP).
  • Enterprise experience implementing advanced use cases such as Zero-Trust PAM implementation, Application Identity Management (AIM) and DevOps security is a big plus.
  • Utilize automation and role-based management to ensure availability of access and continuity of services.
  • Supporting customers in secure environments.
  • Providing on-call rotation support on a routine basis.
  • Effectively performing duties and collaboration in a remote telework environment.
  • Identifying process improvement opportunities for review and subsequent implementation.
  • Providing positive customer service interactions for all levels of the organization up to and include senior executive staff.
  • Performing root cause analysis, risk identification, and risk mitigation.
  • Other operational support duties as assigned.
  • Provide Proof of Concepts and Pilots for Advancing Zero Trust and final implementation to transfer Zero Trust integration to infrastructure engineering support.
  • Contributes to deliverables and performance metrics where applicable.


  • Public Trust Clearance or ability to obtain.
  • ITILv4 Foundation Training and certification (no later than December 31, 2022).
  • Possesses and applies expertise on multiple complex work assignments.
  • Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks.
  • Operates with appreciable latitude in developing methodology and presenting solutions to problems.
  • Contributes to deliverables and performance metrics where applicable.
  • Work is performed under supervision.
  • Operates with appreciable latitude in developing methodology and presenting solutions to problems.


  • Strong knowledge of the different identity and access management (IAM) concepts, technologies and authentication protocols.
  • Strong knowledge of Sailpoint, deployments, building configurations, and integrating with application endpoints for provisioning and de-provisioning.
  • Participate in the management of source code and build processes for SailPoint IdentityIQ, and leverage past experience to provide recommendations on ways those could be improved.
  • Configurations of Roles, Policies and Certifications for Governance and compliance
  • Familiarity with JIRA, GIT.
  • Identity Management services operations including but not limited to:
    • SailPoint IdentityIQ
    • SecureAuth
    • Forefront Identity Manager/Microsoft Identity Manager
    • Active Directory Federation Services
  • Public Key Infrastructure (PKI):
    • Active Directory Certificate Services (AD CS)
    • HID Credential Management System (CMS)
    • HID ActivClient
  • Active Directory including but not limited to:
    • Microsoft Active Directory
    • NetIQ DRA
    • NetIQ Group Policy Administrator (GPA)
    • Active Directory Lightweight Directory Services
    • Vulnerability Mitigation
  • Splunk engineering and administration.
  • Powershell, java and .NET scripting.
  • An understanding of Zero Trust concepts.
  • Security+ certification.
  • Must be willing to work a variety of shifts, including holidays as scheduled.
  • Possess the ability to communicate in both oral and written forms, demonstrating an ability to communicate effectively with all levels of staff as well as clients.
  • Bachelor’s degree or equivalent and a minimum 5-8 years of related experience.
  • Have extensive knowledge of SecureAuth version 9.X or higher.
  • Have working knowledge of Multi-Factor Authentication (MFA).
  • Have working knowledge of RADIUS.
  • Experience supporting industry standard software products.
  • Experience as a remote worker demonstrating time management and self discipline.
  • Effectively perform duties and collaboration in a remote telework environment.
  • Good interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
The physical demands described below are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to do the following:
  • As a remote position, personnel are expected to maintain their home workspace in a safe manner, free from safety hazards.
    • As a remote position, personnel are expected to appear on camera for meetings with co-workers and government partners via video chat.
    • As a remote position, personnel are expected to maintain standard working hours per the DIGIT contract and to be available for meetings, Agile ceremonies and other collaborative efforts during working hours.
  • Personnel are expected to ensure the protection of proprietary company and customer information accessible from their home office consistent with the company’s expectations of information security.
  • Communicate verbally and respond to verbal communications in person, over the phone or by video chat.
  • Communicate clearly and succinctly in writing, primarily utilizing a keyboard.
  • Sitting for long periods.
  • Viewing computer screens for long periods of time.
  • Travel minimally (5%), via car or plane, which requires ability to manage luggage, laptop, and briefing materials (up to 25 pounds).

About Lentech, Inc.

Lentech, Inc., provides technology-enabled IT Solutions and Mission Technical Solutions to civil, defense and intelligence customers. Through our accumulated years of experience, industry expertise, and strategic partnerships, Lentech has built mission-critical solutions for our federal and commercial customers. Lentech’s clients achieve full life-cycle support and cost-effective managed services supporting enterprise computing and applications initiatives for Government agencies. Lentech’s Mission Technical Solutions Division is focused on providing engineering, operations, I&T and technical services to civil and defense customers primarily in the aerospace fields.

Lentech, Inc. is a performance-based company providing employees with challenging and interesting work, competitive pay and benefits, and opportunities to learn and grow. We focus on providing an environment of fun, sharing, collaboration and connection. Our culture is team oriented, non-hierarchical and entrepreneurial. It gives people a chance to participate and be a factor in the company’s growth and success.

Lentech, Inc. is an Equal Employment Opportunity (EEO) employer and considers all qualified applicants for employment without regard to race, color, religion, gender identification, national origin, sexual orientation, age, marital status, disability, protected veteran status, or any other factor prohibited by applicable law. We are proud of the diversity of our staff and seek diversity in our applicants.

Please send qualified resumes to Lentech Human Resources at or visit our website

Enable GingerCannot connect to Ginger Check your internet connection
or reload the browserDisable in this text fieldRephraseRephrase current sentence13Edit in Ginger

Let us know

Help us maintain the quality of jobs posted on RemoteTechJobs and let us know if:

Error on reporting

Related jobs

At Florida Blue, a GuideWell company, we build innovative, enterprise-scalable end to end data analytics enabled products and services used by our internal users and external partners including Members, Providers, and Agents, with an emphasis on keeping.

ManTech International Corporation ManTech International Corporation... |
2 d ago

Where applicable, confirmation that you meet customer requirements for facility access which may include proof of vaccination and/or attestation and testing, unless an accommodation has been approved.Secure our Nation, Ignite your FutureJob Requisition.

Liberty Mutual Insurance Liberty Mutual Insurance |
4 d ago

This position can be a 100% remoteDo you have the skills—and drive—to join a tech team that's working to digitally transform a trillion-dollar industry? From test-driving the latest technologies to creating intuitive consumer apps, Liberty Mutual is.

The members of this engineering team design, develop, and operate Error Inbox product, which helps our customers prioritize the most important errors every day.Our senior engineers guide the design, construction/development, documentation, maintenance,.

Piper Companies is seeking a Remote Chief Architect – Payment Processing for a worldwide technology organization. The VP - Chief Architect (Payment Switching Platform) can sit 100% remote and will need to work EST or CST work hours. The ideal candidate.

Infosys Infosys |
28 d ago

Infosys is seeking a Technology Lead who will interface with key stakeholders and apply your technical proficiency across different stages of the Software Development Life Cycle including Requirements Elicitation, Application Architecture definition.

More jobs by this company

Lentech is seeking is seeking a Software Development Engineer with diverse experience in software development projects. The Software Development Engineer serves as a key member of the software development team within an Agile Release Team. Responsibilities.