About The Position
As the Enterprise Zero Trust & ICAM Lead, you will serve as the senior cybersecurity authority for the DOJ OJP Enterprise Application Design and Development Services (EADDS) program. You will lead Digital Identity and Access Management (DIAMD/ICAM), Data Integration & SecOps, and DevSecOps security transformation initiatives to ensure secure, resilient, CJIS-compliant, and FISMA-authorized enterprise services across all OJP product families (JustGrants, CRM, DMRA, ECS, Service Management, etc.) This role integrates security architecture, Zero Trust maturity modeling, identity lifecycle governance, API security, data protection, and automated compliance into all SDLC and product delivery pipelines. This role will be contracted through TSPi, a subsidiary of Abt Global that provides digital services and solutions to clients.
Requirements
- Bachelor’s degree + 12 years cybersecurity experience, or Master’s + 10 years.
- At least 7 years supporting federal security architecture programs.
- Demonstrated Zero Trust leadership in federal environments.
- CISSP required
- Experience with Zero Trust (NIST 800‑207), ICAM modernization, Okta/SailPoint/Entra ID, DevSecOps toolchains, cloud security in AWS GovCloud and Azure Government, CSPM, and enterprise platform security.
- Ability to obtain and maintain a DOJ Public Trust and support CJIS‑compliant environments.
- Experience with DOJ or Justice community systems, and with security modernization under BPA or task-order structures.
Nice To Haves
- preferred certifications include CCSP, CISM, AWS/Azure security, Zero Trust Practitioner, or TOGAF security.
Responsibilities
- Build and evolve an OJP Zero Trust model aligned with NIST 800‑207, including micro‑segmentation and policy‑based access controls.
- Modernize ICAM/DIAMD solutions, integrate Okta and SailPoint, deploy PIV/CAC authentication, strengthen access controls, and enable secure federation.
- Embed automated security into CI/CD pipelines, apply scanning tools, enforce secure Infrastructure‑as‑Code, and ensure compliance with NIST 800‑53.
- Implement enterprise logging, SIEM-based threat detection, API security, vulnerability management, and continuous ATO capabilities.
- Apply data classification, encryption, tokenization, masking, and DLP across cloud and enterprise platforms.
- Ensure adherence to FISMA, CJIS, DOJ standards, FedRAMP, and maintain SSP, POA&M, and ATO documentation.
- Architect secure AWS and Azure Gov environments and secure integrations for Dynamics 365, ServiceNow, Pega, Salesforce, and Snowflake.
- Evaluate emerging AI/ML platforms and apply governance, privacy safeguards, and secure model lifecycle controls.
Benefits
- comprehensive benefits
- flexible schedules
- professional development
- market-competitive salaries
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
