ICAM Identity Engineer
About The Position
Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent. Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team. We are seeking an ICAM Identity Engineer to provide hands-on implementation and operational support for enterprise identity, credential, and access management platforms. The Role The ICAM Identity Engineer is a hands-on technical specialist responsible for deploying, configuring, and maintaining identity platforms that enforce least-privilege access and Zero Trust principles. This role focuses on execution within Identity Providers (IdP), Privileged Access Management (PAM), and Identity Governance and Administration (IGA) solutions across cloud and on-prem environments.
Requirements
- Active DoD Top Secret clearance with SCI eligibility
- DoD 8140 compliant (IAT Level II or higher)
- Hands-on experience with at least one core identity platform: Microsoft Entra ID Enterprise PAM (e.g., Delinea) Enterprise IGA (e.g., SailPoint)
- Strong understanding of identity security principles (least privilege, MFA, RBAC/ABAC, JIT/JEA)
- Experience administering Active Directory and enterprise identity policies
- Ability to implement and troubleshoot complex access control and security configurations
Nice To Haves
- Microsoft Certified: Identity and Access Administrator (SC-300)
- Delinea Certified Administrator
- SailPoint IdentityNow certification
- Ping Federate certification
- Experience with Red Hat IdM
Responsibilities
- Implement and maintain Microsoft Entra ID Conditional Access policies and CAC/PKI authentication
- Manage federation and SSO integrations using Ping Federate (SAML, OIDC, MFA)
- Onboard and manage privileged accounts within an enterprise PAM solution (e.g., Delinea)
- Configure credential rotation, session monitoring, and Just-In-Time / Just-Enough-Administration workflows
- Implement SailPoint IGA workflows for Joiner-Mover-Leaver lifecycle automation and access certification
- Administer Active Directory using delegated administration tools (e.g., Active Roles)
- Manage Linux identity and authorization policies using Red Hat IdM (HBAC, sudo)
- Troubleshoot identity, authentication, and access control issues across enterprise environments
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
101-250 employees
