Overview
Skills
Job Details
About UVS Infotech:
UVS Infotech is a Laurel, Maryland-based, IT System Integrator with expertise in Emerging Technologies: Artificial Intelligence, Machine Learning, Robotic Process Automation, Blockchain, Identity & Access Management, Identity Proofing
Position Description:
The Identity, Credential, and Access Management (ICAM) Subject Matter Expert (SME) will lead a comprehensive assessment of an organization s current IAM ecosystem across on-premises and cloud environments. This role is responsible for discovery, inventory, analysis, and reporting on human and non-human identities, privileged accounts, and access controls. The ICAM SME will benchmark against industry best practices (e.g., CIS controls), identify security and compliance gaps, and deliver a strategic, phased roadmap of recommendations. Strong collaboration and knowledge transfer with internal stakeholders is essential to ensure alignment with institutional goals and successful transition to implementation.
Role and Responsibilities:
- Conduct stakeholder interviews and technical discovery to catalog all identity stores, directories, federations, and shadow applications.
- Map and attest all user, service, and application-to-application accounts, including privileged local, service, and administrator accounts.
- Evaluate existing IAM architecture, policies, processes, and controls against CIS framework IAM-related controls.
- Review user lifecycle processes (provisioning/deprovisioning, onboarding/offboarding, role changes, third-party/vendor access).
- Assess authentication mechanisms (MFA, SSO, password management) and privileged access solutions (PIM, PAM, ABAC, RBAC).
- Analyze account entitlements, group memberships, permission creep, and identity sprawl to identify excessive privileges.
- Perform a security and compliance gap analysis, categorizing findings by risk severity and business impact.
- Develop mitigation strategies for identified gaps, including quick-win fixes and long-term controls.
- Deliver interim reports, meeting summaries, and a final assessment report detailing findings, analysis, and recommendations.
- Provide detailed inventories and attestation matrices of identities, roles, permissions, and system access.
- Develop a prioritized IAM roadmap with actionable milestones, timelines, effort estimates, and governance recommendations.
- Recommend neutral, justified tools and technology solutions where appropriate.
- Serve as primary liaison to the internal IAM Specialist, maintaining regular communications and facilitating knowledge transfers.
- Lead workshops and training sessions to ensure the in-house team understands assessment outcomes and planned improvements.
Required Skills:
- Deep expertise in Microsoft Entra ID/Azure AD, on-premises Active Directory, and synchronization technologies.
- Hands-on experience with PIM/PAM platforms and authentication methods (MFA, SSO).
- Strong knowledge of CIS security controls, NIST IAM standards (e.g., NIST SP 800-63), and Zero Trust principles.
- Proficiency in identity lifecycle management, access reviews, and entitlement management.
- Familiarity with common enterprise applications and shadow IT discovery methods.
- Excellent analytical skills with an ability to translate technical findings into business-aligned recommendations.
- Strong written and verbal communication skills; able to produce clear, concise documentation and deliver presentations.
- Experience collaborating with cross-functional teams and facilitating knowledge transfer.
Education and Experience:
- Bachelor s degree in Computer Science, Information Security, or related field (Master s preferred).
- Minimum of 8-10 years of progressive IAM experience, including advisory or audit engagements.
- Proven track record conducting IAM assessments for higher education, government, or large enterprise environments.
- Relevant certifications such as Certified Identity and Access Manager (CIAM), or Microsoft Certified: Identity and Access Administrator Associate.
- Demonstrated success in developing strategic IAM roadmaps and guiding implementation planning.
- Prior experience working with audit reports (e.g., CIS assessments, BIA) and correlating findings to IAM controls.