Job Description
Job Description
Position Title: ICAM Engineer (Zero Trust)
Clearance Requirement: Must be able to pass federal background investigation for Public Trust
Position Location: Hybrid- Washington DC
Bachelor’s degree in Cybersecurity, Information Systems, or related field Required
Pay is based on experience and qualifications
Responsibilities
- Design, implement, and maintain enterprise ICAM solutions for USCP systems and applications.
- Engineer integrations between ICAM platforms and federated identity systems, Smart Card Credentials (ex. PIV), FIDO2 tokens, mobile credentials, and cloud services.
- Support implementation of Zero Trust security models, including continuous authentication, least privilege, and micro-segmentation.
- Ensure ICAM services align with FICAM architecture, NIST Zero Trust guidance (SP 800-207), and federal ATO processes.
- Develop and maintain ICAM-related documentation, including standards, SOPs, playbooks, and system design artifacts.
- Collaborate with cross-functional teams (security, IT, facilities, and operations) to ensure ICAM alignment with organizational goals.
- Evaluate and recommend emerging ICAM and Zero Trust technologies, tools, and vendors.
Qualifications
Required:
- Bachelor’s degree in Cybersecurity, Information Systems, or related field; or equivalent work experience.
- 10+ years of experience with ICAM platforms and services (e.g., identity governance, directory services, authentication, PKI, federation).
- Demonstrated expertise implementing Zero Trust architectures and NIST SP 800-207 principles.
- Experience with federal FICAM frameworks, PIV card/PACS integration, and federated identity management.
- Strong knowledge of authentication protocols (SAML, OAuth 2.0, OpenID Connect, Kerberos, LDAP).
- Experience with cloud identity (Azure AD, AWS IAM) and hybrid identity environments.
Preferred:
- Familiarity with U.S. federal security frameworks and ATO processes.
- Experience supporting law enforcement or federal agencies.
- Hands-on experience with Zero Trust vendors/solutions (e.g., Okta, Ping, Microsoft, BeyondTrust, CyberArk).
- Relevant certifications such as CISSP, CCSP, Security+, or vendor-specific ICAM/Zero Trust certifications.
Skills & Competencies
- Deep expertise in identity security and access governance.
- Strong understanding of federal security requirements and compliance.
- Excellent problem-solving and troubleshooting skills.
- Ability to write clear technical documentation and security standards.
- Strong communication skills, able to brief both technical and executive stakeholders.