ICAM Engineer

Reston, VA, US • Posted 1 day ago • Updated 8 hours ago

Full Time

On-site

Fitment

Dice Job Match Score™

🤯 Applying directly to the forehead...

Job Details

Skills

Scripting
Governance
Documentation
Authentication
CAC
Large-Scale
Shell Scripting
Load Balancing
Identity and Access Management
Active Directory
Migrations
Identity Management
SSO
Security Policies
Access Control
SAML
Multi-Factor Authentication
TS/SCI
LDAP
Kerberos
Smart Card

Summary

Role: Sr. ICAM Engineer

Location: Reston, VA

Duration: Direct Hire

Citizenship: TS/SCI with Full Scope Polygraph

Top Skills:

5 years of Tier II or 3 years of Tier III IAM
Azure Entra ID
MFA

Role and Responsibilities:

Architect, deploy, and sustain secure ICAM solutions aligned with the Microsoft Cloud Adoption Framework (CAF) and Zero Trust.
Design, implement, and manage Multi-Factor Authentication (MFA) solutions across hybrid enterprise environments.
Implement and maintain Hybrid Identity integrations, including synchronization of on-premises Active Directory with Entra ID.
Manage and automate Azure Groups for access control, RBAC, and enterprise security policies.
Engineer, configure, and maintain Entra ID distributed architecture, ensuring high availability, automated failover, load balancing, and recovery for enterprise-wide identity services.
Incorporate Smart Card / CAC / PIV authentication into enterprise identity solutions and ensure compliance with federal standards (e.g., FIPS 201, HSPD-12).
Monitor and optimize IAM systems for security, performance, and compliance.
Collaborate with cross-functional teams to support application integrations with IAM platforms (SSO, federation, and conditional access).
Ensure governance, compliance, and alignment with Zero Trust, TIC 3.0, and federal security baselines.
Document identity and access designs, workflows, and operational runbooks.

Required Skills

An active TS/SCI with polygraph.
Minimum of five (5) years of Tier II or three (3) years of Tier III IAM/Identity Services support.
Proven ability to design, deploy, and sustain enterprise IAM solutions in hybrid cloud environments.
Expertise with MFA, Hybrid Identity, Azure Groups, Entra ID distributed architecture, and Smart Card authentication.
Strong understanding of Zero Trust, Conditional Access, RBAC, and authentication protocols (SAML, OIDC, OAuth2, Kerberos, LDAP).
Proficiency with PowerShell scripting and automation for identity administration.
Strong troubleshooting and diagnostic skills across hybrid identity systems.
Excellent communication and documentation skills.

Preferred Skills

Microsoft Identity and Access Administrator Associate or Azure Security Engineer certifications.
Experience with Microsoft Entra Permissions Management, Privileged Identity Management (PIM), and Identity Governance.
Knowledge of integrating IAM with Power Platform and enterprise applications.
Familiarity with AOAI embedded features and Copilot capabilities for identity workflows.

Experience with large-scale enterprise migrations involving IAM modernization.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91142412
Position Id: 2026-2070
Posted 1 day ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

ICAM Engineer - Identity Governance

Fort Meade, Maryland

•

Today

Type of Requisition: Regular Clearance Level Must Currently Possess: Secret Clearance Level Must Be Able to Obtain: Secret Public Trust/Other Required: None Job Family: Software Engineering Job Qualifications: Skills: Agile Software Development, Development Experience, Identity Access Management (IAM) Certifications: None Experience: 8 + years of related experience ship Required: Yes Job Description: GDIT is in search of an ICAM Engineer - Identity Governance to support a large line of bu

Full-time

USD 140,250.00 - 189,750.00 per year

ICAM Engineer

Remote

•

30+d ago

You Have: Experience supporting ICAM, security operations, security architecture, and threat responseExperience with the administration of directory services, including LDAP compliant directories such as Active Directory and EntraIDExperience in large-scale enterprise and hybrid architecturesExperience with cybersecurity administration, including SSO and Identity Governance and Administration (IGA)Experience implementing PKI and PIV or CAC standards and methodologiesExperience working in cross-f

Easy Apply

Full-time

$100,000+

Software Integration Engineer

Chantilly, Virginia

•

Today

Leidos is actively interviewing for a Software Integration Engineer to join our team in Chantilly, VA. Our new team member will be working on the GEOAxIS system which provides Identity, Credential and Access Management (ICAM) for web applications. GEOAxIS enables online, on-demand, access to NGA GEOINT content based on user's authoritative attributes/roles. Our Mission is to maintain highly available ICAM services for protecting those critical mission applications across multiple security doma

Full-time

USD 107,900.00 - 195,050.00 per year

Cloud Security Engineer

Reston, Virginia

•

Today

Role: Sr. Cloud Security Engineer Location: Reston, VA (5 days onsite) Duration: Direct Hire Citizenship: TS/SCI with Full Scope Polygraph Top Skills: Cloud Adoption Framework Zero Trust KQL Role and Responsibilities: Architect, deploy, and sustain cloud security solutions aligned with the Microsoft Cloud Adoption Framework (CAF), Zero Trust, and TIC 3.0 security principles. Configure, manage, and optimize Microsoft Sentinel for enterprise-wide security operations, including incident detectio

Full-time

Search all similar jobs