ICAM SME Engineering Lead
Fairfax, VA Fairfax, VA Full-time Full-time 15 hours ago 15 hours ago 15 hours ago Company Overview GovCIO is a team of transformers-people who are passionate about transforming government I.
T.
We believe in making a difference by developing digital strategies and delivering the technology-related innovation governmental operations that improve the citizen experience every day.
But we can't do it alone.
We welcome and nurture an inclusive and diversified work culture.
Because different backgrounds, experiences, abilities, and perspectives make us better decision-makers, problem solvers, and creators.
We're changing the face of I.
T.
- from our diverse staff to the end-products we develop.
And we're excited to expand our team.
Are you ready to be a transformer? Position Description The ICAM SME Engineering Lead will function as an integral member of the ICAM program team.
Overall, the ICAM team is responsible to provide assessment, planning, designing, development, deployment, training, and transition to operations activities related to maturing the USAID's ICAM infrastructure, capabilities, and service offerings utilized by USAID's Bureaus and external partners.
In this role, the SME is expected to provide expert level support to the agency, ensuring compliance with HDPS-12, OMB 22-09, and other federal directives in the ICAM/ZTA realm.
This role will provide mentorship and guidance to the ICAM Engineering Staff, ensuring the team is in alignment with the agency's ZTA directives.
Examples of anticipated work activity:
Provide Operational staff consultation/support for an enterprise-wide PKI upgrade and migration to PKI-as-a-Service.
Work closely with ICM vendors, ensuring they products align to the ICAM ZTA roadmaps and presidential directives.
Provide support for future ICAM enhancements, such as adoption of Fast Identity Online 2 (FIDO) password-less standards.
Provide overall ICAM governance support for MFA, Encryption, and Automated Dynamic Access Control (ADAC) work streams.
Direct lifecycle management for emerging technologies.
Provide overall ICAM roadmap recommendations to the CIO.
Mentor and coach the ICAM engineering staff.
Required Skills and Experience Experienced Professional with combined 15
years within the fields of Information Security and Identity & Access Management with regards to developing, implementing, and overseeing the protection of information, information systems and (IT) requirements.
Knowledge of and experience with architecting solutions adhering to Federal Identity, Credential, and Access Management (ICAM) policies, directives, and standards.
Knowledge of IAM and ICAM policies and standards (e.
g.
, HSPD-12, FIPS 201, NIST- 800-63, and NIST SP 800-53 Rev 5) Understanding of ICAM as a foundational element of a Zero Trust architecture.
Knowledge of implementing IAM tools in an enterprise environment.
Knowledge of Active Directory, Common ICAM standards:
OAuth 2.
0, OIDC, SAML, SCIM, FIDO2, XACML, Attribute and Role based access control (ABAC and RBAC), Multi-factor Authentication solutions (AAL2 and AAL3), Single Sign On, Entitlement Management.
2
years of experience on working in any major cloud (Azure, AWS or like) services and proficient with Cloud technologies Proficient with Azure DevSecOps Tools and Processes.
Hands-on experience with SDLC and Agile processes.
Ability to see the big picture and lead the team with a detailed task level aligned with the big picture.
Strong oral and written communication skills with the ability to tailor your messaging to technical and non-technical audiences.
Proficient to handle multi-tasking and ability to prioritize (teams) tasks independently based on Organizations priorities.
Ability to manage various stakeholders (technical and non-technical) and collaborate with others to achieve common goals.
Has hands-on experience managing or supporting complex technical ICAM implementations, and experience with Federal Public Key Infrastructure (FPKI).
Has a robust solid understanding of how ICAM promotes security and trust, as well as meeting business needs while achieving the intended value.
CISSP certification is a strong plus.
Preferred Skills and Experience SME level PKI knowledge, specifically experience deploying the HSMs, KMSs, etc.
Superior written and verbal communication skills.
SME level understanding of ICAM technologies .
Estimated Salary: $20 to $28 per hour based on qualifications.
T.
We believe in making a difference by developing digital strategies and delivering the technology-related innovation governmental operations that improve the citizen experience every day.
But we can't do it alone.
We welcome and nurture an inclusive and diversified work culture.
Because different backgrounds, experiences, abilities, and perspectives make us better decision-makers, problem solvers, and creators.
We're changing the face of I.
T.
- from our diverse staff to the end-products we develop.
And we're excited to expand our team.
Are you ready to be a transformer? Position Description The ICAM SME Engineering Lead will function as an integral member of the ICAM program team.
Overall, the ICAM team is responsible to provide assessment, planning, designing, development, deployment, training, and transition to operations activities related to maturing the USAID's ICAM infrastructure, capabilities, and service offerings utilized by USAID's Bureaus and external partners.
In this role, the SME is expected to provide expert level support to the agency, ensuring compliance with HDPS-12, OMB 22-09, and other federal directives in the ICAM/ZTA realm.
This role will provide mentorship and guidance to the ICAM Engineering Staff, ensuring the team is in alignment with the agency's ZTA directives.
Examples of anticipated work activity:
Provide Operational staff consultation/support for an enterprise-wide PKI upgrade and migration to PKI-as-a-Service.
Work closely with ICM vendors, ensuring they products align to the ICAM ZTA roadmaps and presidential directives.
Provide support for future ICAM enhancements, such as adoption of Fast Identity Online 2 (FIDO) password-less standards.
Provide overall ICAM governance support for MFA, Encryption, and Automated Dynamic Access Control (ADAC) work streams.
Direct lifecycle management for emerging technologies.
Provide overall ICAM roadmap recommendations to the CIO.
Mentor and coach the ICAM engineering staff.
Required Skills and Experience Experienced Professional with combined 15
years within the fields of Information Security and Identity & Access Management with regards to developing, implementing, and overseeing the protection of information, information systems and (IT) requirements.
Knowledge of and experience with architecting solutions adhering to Federal Identity, Credential, and Access Management (ICAM) policies, directives, and standards.
Knowledge of IAM and ICAM policies and standards (e.
g.
, HSPD-12, FIPS 201, NIST- 800-63, and NIST SP 800-53 Rev 5) Understanding of ICAM as a foundational element of a Zero Trust architecture.
Knowledge of implementing IAM tools in an enterprise environment.
Knowledge of Active Directory, Common ICAM standards:
OAuth 2.
0, OIDC, SAML, SCIM, FIDO2, XACML, Attribute and Role based access control (ABAC and RBAC), Multi-factor Authentication solutions (AAL2 and AAL3), Single Sign On, Entitlement Management.
2
years of experience on working in any major cloud (Azure, AWS or like) services and proficient with Cloud technologies Proficient with Azure DevSecOps Tools and Processes.
Hands-on experience with SDLC and Agile processes.
Ability to see the big picture and lead the team with a detailed task level aligned with the big picture.
Strong oral and written communication skills with the ability to tailor your messaging to technical and non-technical audiences.
Proficient to handle multi-tasking and ability to prioritize (teams) tasks independently based on Organizations priorities.
Ability to manage various stakeholders (technical and non-technical) and collaborate with others to achieve common goals.
Has hands-on experience managing or supporting complex technical ICAM implementations, and experience with Federal Public Key Infrastructure (FPKI).
Has a robust solid understanding of how ICAM promotes security and trust, as well as meeting business needs while achieving the intended value.
CISSP certification is a strong plus.
Preferred Skills and Experience SME level PKI knowledge, specifically experience deploying the HSMs, KMSs, etc.
Superior written and verbal communication skills.
SME level understanding of ICAM technologies .
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
