Ampsight is seeking an ICAM Engineer/Architect to work across R&D activities and contract programs developing ICAM solutions through the combination of commercial and proprietary products and services.
As the subject matter expert, you will provide technical direction for and collaboratively prototype, integrate, develop, and test with product teams to identify optimal ICAM solutions that meet the present and future needs of our customers.
Responsibilities
Lead efforts to prototype new ICAM technologies, products, and services.
Provide detailed technical direction to product teams to develop and deploy ICAM solutions.
Work to influence project/team leaders regarding solution design, process and/or approaches.
Lead and affect ICAM roadmaps and their implementation.
Install, evaluate the ability of, configure, and integrate products to achieve identified ICAM capabilities.
Requires expert knowledge of and ability to apply advanced technical principles, theories, and concepts.
Experience installing, configuring, and integrating products in a lab / development environment.
Experience scripting and development of standards based services (e.
g.
, REST, OAuth, OIDC, SAML) to integrate products and test ICAM capabilities.
Solid understanding of IdAM / ICAM Services (e.
g.
Authentication, Authorization, Identity, and Data Protection through Digital Policy) Demonstrated ability to architect, design, and document ICAM services for multiple customers and/or security fabrics.
Demonstrated expertise and experience designing, documenting, and delivering Enterprise-class ICAM services (or other complex information technology systems / solutions) Demonstrated in-depth knowledge of IC ICAM standards as well as IC ICAM roadmap architecture and implementation guidance.
Demonstrated experience architecting ICAM systems/services with one or more ICAM products (e.
g.
Oracle IAM, Okta, Ping Identity, Radiant Logic, Axiomatics, SailPoint, etc.
) Extensive knowledge of ICAM concepts and technologies (e.
g.
PKI, Single Sign-On, SAML, OpenID Connect, OAuth, XACML, FIDO2, WS-Trust, etc.
)
Preferred Qualifications
At least ten (10) years of technical IT security experience
At least five (5) years of experience performing ICAM security functions
At least one (1) year of experience performing ICAM functions for Federal IT systems
Ability to work independently/minimal oversight
Certifications such as CISSP, CISA, or Certified System Engineer ICAM PACS (CSEIP)
Solid background and knowledge of the common service offerings within ICAM technologies
Experience with deploying and configuring SailPoint, OKTA, CyberArk, Azure/AWS, Active Directory, LDAP, SSO, Federations
Familiarity with data analytics, cloud, virtualization, remote access and mobile technologies
Requirements
Demonstrated experience in agile continuous integration, continuous development, test-based development, and refactoring
Top Secret/SCI with Polygraph, however, consideration will be given for lower clearance level with exceptional skills and experience
Understanding of DevSecOps solutions for configuration management, containerization, automated deployment, and automated testing
Experience implementing ICAM solutions within a Zero Trust Architecture
Experience with infrastructure-as-code and configuration-as-code tools (e.
g.
Terraform, Ansible, Chef, Puppet, etc.
)
Bachelor's degree in Business, Computer Science, Math, Engineering or a related field or equivalent combination of education, experience, and/or certification
Benefits
Stock options, our success is your success
Discretionary performance-based bonus(es)
10 paid holidays and 1 floating holiday per year
20 days PTO per year
401K plan with 4% match (assuming 5% employee contribution)
Health care, dental, vision with company contribution
Short and long-term disability
Life insurance
Hybrid work model
Whatsapp
