Senior ICAM Engineer
We are a fast-paced organization that values our people and always strives for excellence. Our delivery practices lean heavily on Agile methodology and our technologists are top notch. The Easy Dynamics culture is one of connection and collaboration across teams to ensure that we always put our best foot forward. Being in growth mode means that we are small enough that no idea is too small for discussion, and everyone can be an impact player.
Easy Dynamics is seeking an Identity, Credential, and Access Management Sr. ICAM Engineer with deep understanding and experience in federal identity policies, guidance, and technical implementations. The ideal candidate should be an expert in ICAM enabling technology – Microsoft Azure Active Directory - in order to work with clients on formulating, designing and evaluating architectures and technical solutions. Other key activities include drafting target-state business and technology processes, drive ICAM compliance to federal (NIST) guidance and standards and provide an authoritative ICAM technology voice to internal and external stakeholders. The candidate will participate as a leader on a team and will be part of implementing an enterprise wide federal ICAM program.
Responsibilities:
- Works with Development and Operations teams to provide input into (federal) standards based ICAM development, implementation and operations
- Leads and facilitates meetings with internal team members and client representatives to drive ICAM standard compliance for new and existing systems
- Under minimal direction, collaborates with end-users to define, analyze and review business requirements
- Clearly communicates complex technical topics to both technical and non-technical stakeholders
- Leads the technical team to define technical specifications and system design; develop technical and ICAM architecture for securing and delivering information systems
- Partners with internal and external program stakeholders to translate business goals to technical ICAM architecture and solutions
- Prepares technical documentation which thoroughly captures proposed and as-built solutions
- Leads ICAM deployment activities, including communication, contingency and rollback planning
- Provides an authoritative voice on ICAM standards, policies, and technical implementations
- Drafts effective strategies to realize target states – with a focus on compliance and sound ICAM architectures
- Authors Knowledge Based Articles (KBAs) to relay technical concepts from candidate’s domain of expertise to Help Desk staff
- Estimates level of effort and resource utilization
- Anticipates, communicates and resolves issues and risks during project planning and execution
- Performs risk management activities, to include providing mitigation strategies
- Participates in long term planning and vendor engagement working sessions
- Demonstrates strong problem-solving mindset with the ability to perform stakeholder analysis for complex programs
- Work cross-functionally across client business units, program and product management, and Agile teams
- Presents strategies and roadmaps to program leadership to get buy-in and approval
- Experience working directly on large scale ICAM implementations, with a strong understanding of FICAM Architecture and Playbooks & FPKI concepts and their relationship to PIV, Derived PIV, and Entra ID CBA
- Experience working using agile methods and scrum process
- Demonstrated ability to understand complex technical issues and communicate them to non-technical audiences.
- Excellent diagnostic, critical thinking, and analytical skills
- Ability to understand business challenges and identify and recommend appropriate strategies and technical solutions
- Ability to work independently, especially at project startup, to define goals and metrics, as well as collaborate with diverse stakeholders to enhance program value
- 5+ years of administering Active Directory and Entra ID
- 2+ years of experience with Microsoft Graph, Azure CLI and/or Azure PowerShell Modules
- 2+ years of developing maintaining, and/or troubleshooting SAML based applications (as a developer or sys admin)
- 2+ years of developing, maintaining, and/or troubleshooting OIDC/OAuth 2.0 applications (as a developer or sys admin)
- Strong understanding of Microsoft Cloud Identity, including but not limited to: Certificate-Based Authentication (X509); Privileged Identity Management (PIM); Entra Identity Governance; RBAC in Azure / Entra ID; Enterprise applications, app registrations, managed identities, and service principals; conditional access framework, authentication strengths, and their relationship to NIST 800-63B; SCIM and Entra ID User Provisioning; and Entra ID B2C; Entra Connect and deploying Identity Experience Framework (IEF) Policies
- Experience configuring identity on a second cloud stack (AWS, GCP) preferred
- Strong understanding of federal security standards related to ICAM, including NIST 800-53, 800-63 and CISA Guidance
- Experience with using GitHub as source control for scripts or apps, and as a tool for change management (CI/CD)
- Willingness to quickly learn new technologies as needed to effectively deliver ICAM projects
- Ability to collaborate with both technical and non-technical stakeholders
- Bachelor’s degree or higher required
- US Citizenship required
- Ability to obtain a U.S. Government clearance
ABOUT EASY DYNAMICS
Easy Dynamics has nearly two decades of hands-on experience designing, deploying, and managing cybersecurity solutions across organizations of every size. We are builders, problem solvers, and trusted advisors who bring well-architected solutions and management consulting to our clients to align them with the best practices their missions demand. As industry leaders, we are committed to delivering unparalleled quality and service in all aspects of our organization and providing our customers with outstanding technical excellence and the business acumen to advise them on both tactical and strategic initiatives.
Easy Dynamics’ culture is best described as “East Coast address, West Coast attitude, driven by a unique combination of talented individuals who routinely deliver with innovation, and technical excellence. By building a world-class team of engineers and subject-matter experts, we’ve cemented our standing as a trusted provider of next-generation identity and risk management solutions. Other core capabilities include Velum Cloud delivery, automation and resilience.
Easy Dynamics is an equal opportunity employer. Applicants are considered for positions without discrimination on the basis of race, color, religion, sex, national origin, age, disability, sexual orientation, gender identity, veteran status or any other consideration made unlawful by applicable federal state or local laws.