Position Title: Senior ICAM Engineer (Zero Trust) Clearance Requirement: Must be able to pass federal background investigation for Public Trust Position Location: Hybrid- Washington DC Bachelor’s degree in Cybersecurity, Information Systems, or related field Required Responsibilities + Design, implement, and maintain enterprise ICAM solutions for USCP systems and applications. + Engineer integrations between ICAM platforms and federated identity systems, Smart Card Credentials (ex. PIV), FIDO2 tokens, mobile credentials, and cloud services. + Support implementation of Zero Trust security models, including continuous authentication, least privilege, and micro-segmentation. + Ensure ICAM services align with FICAM architecture, NIST Zero Trust guidance (SP 800-207), and federal ATO processes. + Develop and maintain ICAM-related documentation, including standards, SOPs, playbooks, and system design artifacts. + Collaborate with cross-functional teams (security, IT, facilities, and operations) to ensure ICAM alignment with organizational goals. + Evaluate and recommend emerging ICAM and Zero Trust technologies, tools, and vendors. Qualifications Required: + Bachelor’s degree in Cybersecurity, Information Systems, or related field; or equivalent work experience. + 10+ years of experience with ICAM platforms and services (e.g., identity governance, directory services, authentication, PKI, federation). + Demonstrated expertise implementing Zero Trust architectures and NIST SP 800-207 principles. + Experience with federal FICAM frameworks, PIV card/PACS integration, and federated identity management. + Strong knowledge of authentication protocols (SAML, OAuth 2.0, OpenID Connect, Kerberos, LDAP). + Experience with cloud identity (Azure AD, AWS IAM) and hybrid identity environments. Preferred: + Familiarity with U.S. federal security frameworks and ATO processes. + Experience supporting law enforcement or federal agencies. + Hands-on experience with Zero Trust vendors/solutions (e.g., Okta, Ping, Microsoft, BeyondTrust, CyberArk). + Relevant certifications such as CISSP, CCSP, Security+, or vendor-specific ICAM/Zero Trust certifications. Skills & Competencies + Deep expertise in identity security and access governance. + Strong understanding of federal security requirements and compliance. + Excellent problem-solving and troubleshooting skills. + Ability to write clear technical documentation and security standards. + Strong communication skills, able to brief both technical and executive stakeholders. Ref: #850-Rockville (ALTA IT) System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan. System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.