Solutions Engineer

ID 2026-16741
Category
Information Technology
Position Type
Full-Time Regular
Location
US-TX-Houston
Workplace Type
Hybrid

About Us

Every moment of every day, people around the world rely on the energy they access through infrastructure built by Quanta. Comprising the largest skilled-labor force in North America, our employees are highly skilled and innovative, continually working to connect people and power. We’re building the infrastructure that supports the energy transition, and there are more opportunities than ever to be part of our team. Join us and build your career building a brighter future.

Imagine what you could do here. We encourage, inspire, and support our people to seize opportunities in our corporate office and with hundreds of our operating companies worldwide that provide solutions for the utility, renewable energy, electric power, industrial, and communications industries.

Quanta actively promotes and maintains a culture of belonging where all employees can be themselves, live their values, and find opportunities to succeed. When you join our team, you join a dynamic organization in which career development is encouraged, excellence is rewarded, and diversity is prized. Come find out how our people power modern life.

About this Role

This role is responsible for developing solutions for Identity and Access Management with Azure, AWS and OCI.  Integrate current architectures, create technical documentation, and works with business to provide technical support.  There is a strong focus on Identity security as well as on automation and workflow processes.

What You'll Do

Multi-Cloud Identity Engineering

  • Design, author, and maintain custom IAM policies, roles, permission boundaries, and trust relationships across AWS (IAM, IAM Identity Center, STS), Azure (Entra ID, RBAC, PIM), OCI (IAM domains, policies, dynamic groups), and GCP (IAM, Workload Identity Federation), with AWS as the deepest area of expertise.
  • Apply least-privilege and zero-trust principles to human, service, and workload identities, including cross-account and cross-cloud federation patterns.
  • Design and govern non-human identities: service principals, managed identities, service accounts, workload identities, and API credentials across all four clouds.

AI-Enabled and Agentic Identity Solutions

  • Architect and build identity solutions for AI agents and agentic workflows, including secure credential issuance, scoped delegation, token lifecycle management, and auditability for autonomous and semi-autonomous systems.
  • Evaluate and integrate emerging standards and tooling for machine and agent identity (e.g., workload identity federation, OAuth token exchange, fine-grained authorization) into Quanta's identity architecture.
  • Leverage AI tooling to automate identity operations, access reviews, and anomaly detection where appropriate.

Entra ID, SSO, and Active Directory

  • Configure and maintain Entra ID single sign-on via application registrations and enterprise applications using SAML, OIDC, and OAuth/Microsoft Graph API.
  • Manage Conditional Access policies, Azure MFA, and hybrid identity via Entra Connect (Azure AD Connect), including monitoring and troubleshooting synchronization.
  • Administer the enterprise AD forest/domain and domain controllers: Group Policy, replication, sites and subnets, and account lifecycle in accordance with security, privacy, and regulatory best practices.
  • Provide engineering support for Azure Virtual Desktop identity integration, including app registrations.

DNS and PKI

  • Configure and maintain internal and public DNS, including cloud-hosted zones and hybrid resolution architectures.
  • Administer enterprise PKI / Active Directory Certificate Services, including certificate issuance, renewal automation, and certificate lifecycle management for applications, infrastructure, and workload identities.

Automation and Integration

  • Build and manage identity infrastructure as code using tools such as Terraform, Azure CLI, PowerShell, and CI/CD pipelines.
  • Develop API-driven integrations (Microsoft Graph, AWS APIs, REST) for cross-application interoperability and automated identity workflows.
  • Create best-practice documentation and runbooks to be leveraged by infrastructure and security teams.

Operations and Support

  • Anticipate, identify, respond to, and resolve problems affecting identity systems performance, availability, and security.
  • Support technical M&A integration efforts, including directory consolidation, trust establishment, and identity migration.
  • Provide 3rd-tier escalation support for identity-related break/fix with application support teams, subsidiary IT staff, and the service desk.
  • Research emerging identity technologies and recommend solutions that improve security posture, cost effectiveness, and flexibility.
  • Performs other duties as assigned.

What You'll Bring

  • 5+ years of hands-on identity and access management engineering experience, including demonstrable experience authoring custom IAM policies and roles/permission sets in AWS and Azure.
  • Hands-on experience administering Entra ID (Conditional Access, app registrations, SSO, MFA) and on-premises Active Directory.
  • Bachelor's degree in computer science, Information Security, or related field, or equivalent experience.

PREFERRED EDUCATION AND EXPERIENCE:

  • Experience with IAM in OCI and GCP in addition to AWS and Azure.
  • Experience designing identity for AI/ML platforms, agentic systems, or large-scale non-human identity environments.
  • Experience supporting Azure Virtual Desktop environments.
  • Experience in customer-facing or cross-functional technical support roles.

LICENSES / CERTIFICATIONS:

  • Microsoft SC-300 (Identity and Access Administrator) or equivalent
  • AWS Certified Security - Specialty or AWS Solutions Architect

 

KNOWLEDGE AND SKILLS:

  • Expert-level understanding of authentication and authorization protocols: SAML, OIDC, OAuth 2.0, SCIM, Kerberos, LDAP.
  • Strong scripting and automation skills: PowerShell, Python; infrastructure as code (Terraform preferred).
  • Working knowledge of DNS architecture (internal/public, hybrid resolution) and PKI/certificate lifecycle management (ADCS).
  • Experience using API integrations (Microsoft Graph, cloud-native APIs, REST) for cross-application interoperability.
  • Familiarity with privileged access management, identity governance (IGA), and access certification concepts.
  • Strong documentation skills and the ability to communicate technical designs to engineering and business stakeholders

Equal Opportunity Employer

All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, national origin or ancestry, sex (including gender, pregnancy, sexual orientation, and/or gender identity), age, disability, genetic information, veteran status, and/or any other basis protected by applicable federal, state or local law.

We are an Equal Opportunity Employer, including disability and protected veteran status.

We prohibit all types of discrimination and are committed to providing access and equal opportunity for individuals with disabilities. For additional information or if reasonable accommodation is needed to participate in the job application, interview, or hiring processes or to perform the essential functions of a position, please contact us the Company’s Human Resources department.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Not ready to apply? Connect with us for general consideration.