ICAM Engineer

About The Position

Requirements

• Advanced capability level consistent with the NICE framework roles, with demonstrated abilities, knowledge, and skills to perform all core ICAM tasks.
• Demonstrated, recent experience supporting cybersecurity or ICAM initiatives within a U.S. Federal Government agency (required).
• Bachelor’s degree from an accredited college or university (or equivalent experience).
• 5+ years of experience implementing and supporting ICAM, IAM, or identity security solutions.
• Experience designing and implementing identity platforms such as Okta, SailPoint, Ping Identity, ForgeRock, or Microsoft Entra ID (Azure AD).
• Experience with authentication and federation protocols including SAML, OAuth, OIDC, and MFA.
• Demonstrated experience in cloud security and guiding the secure implementation of identity services in AWS and/or Azure environments.
• Strong understanding of Zero Trust principles and identity-centric security architectures.
• Experience working directly with federal stakeholders and mission owners.
• Strong analytical, communication, and documentation skills.

Nice To Haves

• Experience supporting USDA programs, systems, or initiatives.
• Experience with federal identity standards such as HSPD-12, PIV/CAC integration, and ICAM reference architectures.
• Experience supporting enterprise-wide identity architecture initiatives in a federal environment.
• Familiarity with identity governance and administration (IGA) and Privileged Access Management (PAM) solutions.
• Experience supporting cloud-native and emerging technologies.
• Relevant certifications (e.g., CISSP, CISM, cloud certifications, or IAM/ICAM-specific certifications).

Responsibilities

• Design, implement, test, and evaluate ICAM capabilities and identity security controls throughout the system development life cycle.
• Develop and maintain identity architectures supporting authentication, authorization, and access control aligned with mission and security requirements.
• Collaborate with application, infrastructure, and engineering teams to integrate ICAM solutions into system and cloud architectures.
• Support the selection, implementation, maintenance, and enhancement of identity and access management tools and technologies.
• Guide and support the secure implementation of identity services within cloud-based environments (AWS, Azure).
• Implement and manage identity solutions including SSO, federation (SAML, OAuth, OIDC), and multi-factor authentication (MFA).
• Support Privileged Access Management (PAM) and identity governance capabilities.
• Ensure ICAM solutions align with federal cybersecurity policies, standards, and best practices (e.g., NIST, OMB, Zero Trust).
• Provide technical guidance and recommendations related to identity architecture, access control design, and security implementation.
• Support system security assessments, authorization (A&A) activities, and compliance efforts as they relate to identity systems.
• Document ICAM architectures, configurations, and processes to support operational and compliance requirements.

Benefits

• Traditional and HSA- eligible medical insurance plans
• 100% employer-paid dental and vision insurance options
• 100% employer-sponsored STD, LTD, and life insurance
• 5% 401(k) company matching
• Flexible-schedules and teleworking options
• Paid holidays and PTO Accrual Plans
• Paid Parental Leave
• Professional development and career growth opportunities
• Team and company-wide events, recognition, and appreciation-- and so much more!