Identity Credential Access Management (ICAM) Engineer. Springfield, VA
Title
Identity Credential Access Management (ICAM) Engineer. Springfield, VA
ID
T1218
Department
Information Technology
Brief Description:
The candidate shall be a part of a team migrating servers and applications from an on-premise data center to the cloud. The candidate shall provide engineering support to manage and transition the customer’s Identity Credential and Access Management (ICAM) program and the associated services (currently the Oracle based suite). Also included within this task is the Personal Identity Verification (PIV) integration and support activities.
Major Responsibilities:
-
Provide subject matter expertise in integrating or “on-boarding” applications using disparate authentication and/or authorization services (i.e. Windows Active Directory, LDAP, internal DB, etc.) into the ICAM infrastructure to include the integration points with PIV
-
Provide all ongoing development support for new policy creation, identity management workflow creation, and other COTS software configuration related to new customer requirements. This shall be an ongoing effort, as security policies, related technologies, and new credentialing rules evolve
-
Review existing processes and procedures, and implement efficiency improvements to include automation of manual activities wherever possible.
-
Evaluate the Synchronization options between Active Directory and IDMS. Verify the mapping scripts and synchronization operations function within customer’s domain
-
Automate the process for populating IDMS with government email addresses
-
Develop the Encryption Data Recover Key for Revoked PIV Card Certificates (allowing recovery emails and files encrypted with revoked certificates)
Required:
-
Due to the nature of the government contract requirements and/or clearance requirements, US citizenship is required.
-
Must have an active or ability to satisfy a DHS/CBP background investigation
-
Must possess Oracle Identity and Oracle Access Manager Certifications
-
Bachelor's degree in a related discipline and 10 years related experience
-
At least 1-3 years experience working directly with clients
-
1-3 years experience with Identity and Access Management (IAM)
-
Experience with Oracle Identity and Access Management suite (Oracle Access Manager, Oracle Identity Manager, Oracle Virtual Directory, Oracle Unified Directory, Oracle Internet Directory, Oracle HTTP Server, Oracle WebGate, etc.)
-
Experience with Microsoft Active Directory and other LDAP solutions
-
Familiarity with certificate-based authentication, FISMA, and HSPD-12 requirements including hands-on experience on PIV enablement
-
Experience in process definition, workflow design and process mapping
-
Motivation to learn and seek guidance
-
Excellent verbal and written communication skills
Desired:
-
Experience supporting the DHS customer
-
CISA, SIAM, CISSP or CAP a plus
-
Security+ certification a plus
-
Experience with cloud technologies, e.g. MS Azure, Amazon Web Services (AWS)