JobRushJobRush
Sign inCreate account
All jobs

ICAM Solution Architect

Caci22h ago
United StatesRemote$105.1K–$231.1KFull-timeSenior Level10+ yrs exp
Apply now

Job Title: ICAM Solution Architect Travel: Continental US * * * The Opportunity: The ICAM Solutions Architect provides technical leadership across identity, credential, and access services by shaping ICAM strategy, defining and governing architecture, aligning roadmaps with mission and security priorities, and ensuring seamless integration of ICAM capabilities across the agency.

This role partners with engineering, cybersecurity, governance bodies, and mission stakeholders to deliver a secure, modern, and scalable ICAM ecosystem in alignment with federal mandates and Zero Trust principles

Responsibilities

  • ICAM Strategy & Enterprise Architecture Develop and maintain the enterprise ICAM strategy and future state architecture across identity, credential, authentication
  • access services. Define modernization roadmaps aligned with Zero Trust, cloud identity patterns
  • federal ICAM guidance (M 19 17, A 130, NIST 800 63, 800 53). Conduct architectural assessments across ICAM service towers (IdMAX, NED, NCAD, Entra ID, NAMS/SNAMS, Credentialing Services, eAuth, EPACS, PKI). Governance, Compliance & Risk Alignment Lead architectural alignment with federal identity requirements, including OMB, FISMA, NIST, CDM
  • agency wide cybersecurity strategies. Support ICAM governance bodies by preparing architecture artifacts, decision briefs, risk assessments
  • compliance evaluations. Establish technical guardrails, standards
  • reference architectures for identity lifecycle, access provisioning, credentialing
  • authentication services. ICAM Integration, Interoperability & Data Flows Define and manage integration patterns across identity stores, directories, authentication services, access workflows
  • credential platforms. Architect enterprise data flows between IdMAX → NED → NCAD/Entra ID → NAMS/SNAMS → apps and mission systems. Ensure interoperability with federal shared services (FPKI, Idemia, DHS, GSA) and enterprise solutions (Microsoft, ServiceNow, cloud platforms). Technical Leadership & Roadmap Execution Provide technical oversight to ICAM engineering teams responsible for implementing and operating identity, credentialing, PKI, authentication
  • access tools. Review and approve solution designs, data models, integrations
  • changes to ICAM platforms.
  • Monitor emerging identity trends (phishing-resistant MFA, passwordless, FIDO2, device identity, behavioral analytics). Participate in sprint reviews, backlog prioritization
  • cross-functional planning to ensure architectural alignment.
  • Performance, Metrics & Continuous Improvement Define ICAM architectural performance metrics and KPIs (identity assurance, provisioning times, certificate lifecycle health, authentication quality, account hygiene). Guide continuous improvement initiatives, addressing technical debt, legacy dependencies
  • modernization blockers

Qualifications

  • Required: 10+ years of experience in Identity, Credential
  • Access Management architecture or enterprise security architecture. Deep knowledge of identity lifecycle workflows, identity stores, directory services, authentication protocols (SAML, OIDC/OAuth, Kerberos), PKI.
  • Hands on experience with one or more NASA-relevant systems: Active Directory/Entra ID, ADFS, IdMAX, PIV/PKI, NAMS/SNAMS, Siteminder/eAuth, Credentialing systems, EPACS.
  • Strong familiarity with federal ICAM guidance: OMB A 130, M 19 17, Zero Trust (M 22 09), NIST SP 800 63, 800 53, FIPS 201.
  • Demonstrated ability to create technical architecture artifacts (diagrams, data flows, models, standards).
  • Experience leading technical teams or influencing engineers in a large enterprise environment.
  • Desired: Experience with cloud identity governance (Azure AD/Entra ID, AWS IAM, GCP IAM). Advanced understanding of Zero Trust identity, authentication patterns.
  • Background integrating ICAM into CI/CD pipelines, automation frameworks. - What You Can Expect: A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation. An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as
  • healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Since this position can be worked in more than one location, the range shown is the national average for the position. The proposed salary range for this position is: $105,100-$231,100 CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.

Required skills

Identity ManagementAccess ManagementPKISAMLOIDCOAuthKerberosActive DirectoryAzure ADAWS IAMGCP IAMZero TrustCI/CDAutomation
Posted on JobRush — the end-to-end AI job-search platform.