USA - IAM Architect and Engineer – Contract Roles (On Site 3 days a week) 

• Cyber Security
• Hybrid Remote
• Permanent

IAM Architect and Engineer – Contract Roles (On Site) 

IAM / Active Directory Architect  

Note for US residents: Please enter your phone number with a leading “0” and without the “+1” country code. Use digits only (e.g., 05551234567).

About Bridewell: 

Bridewell is a leading cybersecurity services company committed to protecting Critical Infrastructure (CI) and enabling secure digital transformation. We deliver expert-led services across cyber security, managed security, and data privacy. Our team is passionate about making a meaningful impact, and we’re expanding our capabilities to meet increasing demand across the Americas. Join us and help shape the future of secure infrastructure. 

Position Purpose: 

As an IAM Architect, you will deliver secure identity solutions and design repeatable processes for our Los Angeles client. You will create and implement IAM strategies, ensuring strong access controls and governance across hybrid environments. This role is vital to Bridewell’s U.S. growth and supports CI.  

Responsibilities: 

This role will focus on the architecture and design of the following: 

• Identity Governance and Administration (IGA) workflows and automation 

• Service Account Management and Group Managed Service Accounts 

• Privileged role management in Entra ID for cloud-native accounts 

• Local Administrator Password Solution design 

• Security monitoring standards for Active Directory 

Contract Details: 

• Length of Contract: Up to 6 months (exact duration to be confirmed based on project scope) 

• Location: On-site presence required in Los Angeles, CA, 3 days per week (Tuesday–Thursday) 

• Eligibility: Due to requirements from the end client this contract will support, applicants must be U.S. citizens to meet employment authorization and compliance standards. 

About you: 

We are looking for a highly skilled and credentialed IAM professional who brings both technical expertise and strong client-facing capabilities. You should be passionate about cybersecurity and identity management, with a proven ability to design and implement secure, scalable IAM solutions in complex, tiered environments. 

Qualifications and Experience: 

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field 

• Five years of proven experience in IAM architecture, engineering, and implementation across hybrid and cloud environments 

• Strong understanding of Microsoft Entra ID and Active Directory 

• Familiarity with privileged access management (PAM) and service account governance 

• Excellent communication, documentation, and stakeholder engagement skills 

• Ability to work independently and collaboratively in a fast-paced, client-facing environment 

• Willingness and ability to travel weekly to Los Angeles (on-site presence required Tuesday - Thursday) 

Preferred Certifications (not all required): 

• Certified Identity and Access Manager (CIAM) 

• Certified Information Systems Security Professional (CISSP) 

• Microsoft Certified: Cybersecurity Architect Expert (SC-100) 

• Microsoft Certified: Identity and Access Administrator Associate (SC-300) 

• Okta Certified Professional / Administrator / Consultant or Architect  

• SailPoint Certified IdentityNow Engineer 

 

 

IAM / Active Directory Security Engineer 

Position Purpose: 

As an IAM Engineer, you will be responsible for implementing secure identity and access management solutions based on the designs and strategies developed by Bridewell’s IAM Architects. You will work closely with Bridewell’s IAM security engineers and client stakeholders to deploy, configure, and support IAM technologies across hybrid environments. This role plays a key part in Bridewell’s U.S. operations and supports the protection of CI. 

Responsibilities: 

This role will focus on the implementation of the following: 

• Identity Governance and Administration (IGA) workflows and automation 

• Service Account Management and Group Managed Service Accounts 

• Privileged role configurations in Entra ID for cloud-native accounts 

• Deployment of Local Administrator Password Solution (LAPS) 

• Implementation of security monitoring standards for Active Directory 

• Collaborating with the IAM Architect to ensure alignment with design specifications 

Contract details: 

• Length of Contract: Up to 6 months (exact duration to be confirmed based on project scope) 

• Location: On-site presence required in Los Angeles, CA, 3 days per week (Tuesday–Thursday) 

• Eligibility: Due to requirements from the end client this contract will support, applicants must be U.S. citizens to meet employment authorization and compliance standards. 

About you: 

We are looking for a hands-on IAM Engineer with strong technical skills and a passion for cybersecurity. You should have experience implementing IAM solutions in complex environments and be comfortable working in a client-facing, fast-paced setting. 

Qualifications and Experience: 

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field 

• Five years of proven experience implementing IAM solutions in hybrid and cloud environments 

• Strong working knowledge of Microsoft Entra ID and Active Directory 

• Familiarity with privileged access management (PAM) and service account governance 

• Ability to follow architectural designs and translate them into working solutions 

• Strong problem-solving, documentation, and communication skills 

• Willingness and ability to travel weekly to Los Angeles (on-site presence required Tuesday - Thursday) 

Preferred Certifications (not all required): 

• Microsoft Certified: Identity and Access Administrator Associate (SC-300) 

• Microsoft Certified: Cybersecurity Architect Expert (SC-100) 

• Okta Certified Professional / Administrator 

• SailPoint Certified IdentityNow Engineer 

• Certified Information Systems Security Professional (CISSP) 

• Certified Identity and Access Manager (CIAM)