Subject Matter Expert ICAM

About The Position

Requirements

• Ability to obtain a Public Trust clearance.
• Bachelor’s degree in Computer Science, Engineering, Information Systems, or a related discipline.
• 10+ years of experience architecting, strategizing, and implementing ICAM solutions for large enterprises in federal, commercial, state/local, or healthcare environments.
• Expertise with enterprise ICAM platforms including CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic.
• Strong understanding of digital identity methodologies, advanced MFA, PAM, federated SSO, cloud IAM, and modern authentication patterns.
• Experience supporting enterprise identity architectures across complex environments with multiple user communities and operational boundaries.
• Experience working with DoW or similar partners to integrate with identity/security expectations such as CAC/PIV federation, STIG compliance, and cross‑domain constraints.
• Deep understanding of converged identity platform approaches combining IGA, CPAM, GRC, SSO, and third‑party access governance.
• Knowledge of operational identity delivery including lifecycle management, continuous monitoring, system upgrades, troubleshooting, and enterprise SSO patterns.
• Strong familiarity with federal ICAM mandates including OMB M‑19‑17, NIST 800‑63, EO 14028, and OMB M‑22‑09.
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• Certified Information Systems Auditor (CISA)
• Global Information Assurance Certification (GIAC)

Responsibilities

• Recommend emerging ICAM technologies, architectural patterns, and industry best practices to support VA’s ongoing identity modernization efforts.
• Provide strategic guidance and SME‑level expertise on ICAM solution design, implementation, and governance across enterprise environments.
• Support evaluations and roadmap development for modern ICAM capabilities including digital identity, Zero Trust, cloud IAM, and advanced authentication.
• Deliver expert insight on modern ICAM methodologies such as digital wallets, biometrics, conditional access, contextual authentication, and federated identity.
• Guide engineering and architecture teams on PAM, SSO, FSSO, CDSSO, MFA, identity lifecycle management, and day‑to‑day ICAM operations.
• Bring deep knowledge of emerging ICAM technologies including CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic VDS.
• Translate complex requirements involving CAC/PIV federation, STIG compliance, and cross‑domain identity constraints into operable healthcare‑aligned identity solutions.
• Support harmonization and modernization across converged identity platforms integrating: – Identity Governance and Administration (IGA) – Cloud Privileged Access Management (CPAM) – Governance, Risk, and Compliance (GRC) – SSO and federated SSO – Third‑Party Access Governance
• Assist with strategic planning, architectural reviews, modernization roadmaps, and evaluation of new identity capabilities.
• Collaborate with partners such as DoW and other large enterprises to design and support unified identity ecosystems.
• Provide guidance to leadership, engineering teams, and stakeholders on scalability, compliance, risk mitigation, and modernization opportunities.

Benefits

• Competitive compensation
• 401(k) match
• Comprehensive wellness programs
• Variety of medical plan options
• Dental plan options
• Vision plan
• Full flex work weeks where possible
• Variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• Short and long-term disability benefits
• Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance