RemoteLeaf Logo
Log in Sign up

2026-0098 MFA Internet Portals POC (NS) - THU 9 Jul

3 hours, 57 minutes ago
Belgium
Contract
Senior
Security Engineer
Software Development
OpenID Connect SAML TLS
Apply Now
EMW

EMW

EMW, Inc. is a global systems integration company that provides lifecycle Systems Engineering and Technical Assistance, Engineering and Installation, Operations and Maintenance, and Force Protection in the fields of Health Information Technology, Cyber...

Internet Software & Services
51-250
Founded 1995
View All Jobs 4

Description

  • Build a proof of concept environment using a single Entra ID identity provider with multiple MFA technologies as brokers.
  • Document current production configurations, user lifecycle processes, login/logout UX, application interfaces, and account mappings.
  • Create, configure, and test Entra ID app registrations, branding, MFA policies, custom attributes, Terms of Use, and account linking flows.
  • Design and validate self-service signup, browser authentication, and first-login journeys.
  • Set up monitoring, alerting, log forwarding, and log storage for the POC.
  • Work with security teams on logging analysis, security accreditation, and penetration testing activities.
  • Develop test strategy, test scripts, success criteria, and KPI-based acceptance for non-production testing.
  • Produce support documentation, runbooks, training materials, rollback procedures, and migration documentation.
  • Coordinate with quality teams, technical staff, and application owners to align solution validation and acceptance.
  • Test MFA, self-registration, account linking, custom attribute flows, and application-specific integration across Moodle, SharePoint, Keycloak, and Cognito.

Requirements

  • Valid NATO SECRET security clearance for the full duration of the contract.
  • Must hold nationality of one of the NATO member nations.
  • Minimum 5 years of experience in Identity and Access Management.
  • Strong knowledge of authentication protocols including SAML and OIDC.
  • Experience with federated identity management and SSO solutions such as Okta and Entra ID.
  • Proven experience designing and rolling out MFA at scale in enterprise environments with 5,000+ users.
  • Experience with certificate-based MFA smart cards, YubiKeys, passkeys/WebAuthn, TOTP, and push-based MFA tools such as Microsoft Authenticator or Duo.
  • Understanding of risk-based or adaptive authentication strategies.
  • Experience securing web applications and APIs, including TLS, client certificates, reverse proxies, and Zero Trust principles.
  • Recent experience configuring MFA technologies on Moodle, SharePoint, Keycloak, and Cognito as brokers.
  • Demonstrated recent experience configuring Entra ID as an MFA provider to the listed brokers.
  • Ability to produce high-standard documentation for testing and service delivery.
  • Excellent verbal and written communication skills with full proficiency in English.
  • Ability to communicate technical information clearly to non-technical users.
  • Strong customer service, collaboration, and organizational skills, including attention to detail and accurate record keeping.

Benefits

  • Remote/off-site work arrangement.
  • Potential on-site travel is limited to a maximum of 4 visits of up to 3 days each through 30 December 2026.
  • Deliverables-based contract structure.
  • Defined core working hours.
  • Opportunity to work on a high-visibility NATO security standardisation initiative.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

CallTek

Endpoint Security Engineering

CallTek 51-250 Internet Software & Services

Endpoint Security Engineer at an unspecified company, responsible for protecting and optimizing endpoint security operations through detection engineering, automation, investigations, and incident support.

Philippines Full-time Senior Security Engineer
Cybersecurity
3 hours, 28 minutes ago
DoorDash

Staff Security Engineer, Proactive Security

DoorDash 10K-50K Air Freight & Logistics

DoorDash is hiring a Staff Security Engineer, Proactive Security to lead product security efforts for the Dasher Logistics vertical and help build a safer, more resilient delivery platform.

United States Canada Full-time Lead Security Engineer
$194k-$285k
CI/CD Go Java Microservices
3 hours, 43 minutes ago
TWO95 International

Security Engineer | Fully remote

TWO95 International 51-250 Internet Software & Services

A security-focused IT systems administration role at an organization working across multi-cloud environments, responsible for protecting systems, access, and infrastructure security.

United States Full-time Senior Security Engineer
AWS Azure IDS Linux Python Ruby SIEM Splunk WAF
3 hours, 43 minutes ago
Samsara

Business Technology Engineer II

Samsara 1K-5K IT Services

Samsara is hiring a Sr. IT Engineer on its Identity & Access Management team to own and improve identity infrastructure, automation, and compliance support for internal systems in a remote US-based role.

United States Full-time Senior Security Engineer
$104k-$175k
Confluence GCP Python REST API Splunk Terraform Vertex AI
1 day, 2 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers