Senior Identity, Credential, and Access Management (ICAM) Security Engineer - ITAJS


IT - DC - Washington, DC
Washington, District of Columbia
Locations: Washington, Capitol Hill, Georgetown, Logan Circle
Posted On: August 12, 2025
Last Day to Apply: August 26, 2025
Pay: $75.00 to $95.00 per hour

Job Title: Senior ICAM Security Engineer
Location: Washington, DC
Type: Contract

Job Summary:

We are seeking a highly skilled Senior Identity, Credential, and Access Management (ICAM) Security Engineer to support the deployment, integration, and optimization of enterprise-wide ICAM solutions in a federal environment. The ideal candidate will have experience designing secure identity architectures, implementing multifactor authentication (MFA), and ensuring compliance with government-wide ICAM and zero-trust mandates.

Key Responsibilities:

  • Deploy and manage enterprise ICAM services to support secure identity lifecycle management.

  • Ensure compliance with Office of Management and Budget (OMB) and other federal identity regulations.

  • Provide subject matter expertise in identity, authentication, authorization, credentialing, and analytics.

  • Establish and maintain Master User Records (MUR) across the enterprise.

  • Implement identity providers (IdP) supporting phishing-resistant MFA solutions (FIDO2, Windows Hello, Azure Authenticator, Okta).

  • Integrate device-level signals with user authentication data to enhance identity assurance.

  • Align identity governance systems with enterprise data governance frameworks for consistent role/attribute/tag definitions.

  • Plan, test, and deploy MFA solutions for both cloud-hosted and on-premises environments.

  • Ensure credentialing solutions align with HSPD-12, NIST standards, and federal ICAM guidance.

  • Develop and implement governance policies and best practices for cloud identities, emphasizing security and usability.

  • Deploy identity governance and administration solutions supporting PAM, access management, unified validation, and identity analytics.

  • Conduct both authenticated and unauthenticated scenario-based security assessments.

  • Produce technical documentation and executive-level briefings on ICAM strategy and performance.

Qualifications:

  • Minimum of 5 years of experience supporting enterprise ICAM initiatives.

  • Proven experience in designing and deploying ICAM architectures within federal government environments.

  • Strong understanding of zero-trust architecture and implementation.

  • Hands-on experience with MFA technologies (FIDO2, Azure Authenticator, Windows Hello for Business, Okta).

  • Experience in deploying and operating identity governance solutions with features such as MUR, PAM, access management, and analytics.

  • Familiarity with OMB M-22-09 and other federal identity regulations.

  • Proficiency in identity and group management using Azure AD, Okta, and AWS, including integration with containers and enterprise systems.

Certifications (Preferred):

  • Certified Information Systems Security Professional (CISSP)

  • GIAC Enterprise Vulnerability Assessor (GEVA) or equivalent

© 2025 Powered by TalentNest | Privacy Policy
Skip to the main content