Identity, Credential, and Access Management (ICAM) Subject Matter Expert (SME)
About the role
The successful candidate will be responsible for recommending emerging ICAM technologies, trends, and best practices to help VA advance its ICAM transformation initiatives on an as-needed, reach-back basis. They will strategize, build, and implement cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations. They will apply ICAM methodologies such as digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, federation, Privileged Access Management (PAM), and digital identity management. They will advise on the infrastructure required to deliver enterprise ICAM services, including PAM, lifecycle management of digital identities, Single Sign-On (SSO), Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting. They will support integration with Department of War (DoW)-aligned identity and security expectations and translate those constraints into healthcare-operable designs. They will guide a converged identity platform approach integrating IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution.
Responsibilities
- Recommend emerging ICAM technologies, trends, and best practices to help VA advance its ICAM transformation initiatives on an as-needed, reach-back basis
- Strategize, build, and implement cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations
- Apply ICAM methodologies such as digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, Federation, Privileged Access Management (PAM), and digital identity management
- Advise on the infrastructure required to deliver enterprise ICAM services, including PAM, lifecycle management of digital identities, SSO, Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting
- Support integration with Department of War (DoW)-aligned identity and security expectations (e.g., CAC/PIV federation patterns, STIG-aligned hardening, controlled environments, and cross-domain/partner access) and translate those constraints into healthcare-operable designs
- Guide a converged identity platform approach integrating IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
Requirements
- S. Citizenship
- Ability to obtain and maintain a Tier 4 / High Risk background investigation (High Risk Public Trust), as required for all task areas under this contract
- Extensive experience strategizing, designing, and implementing cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations
- Hands-On experience implementing emerging ICAM products such as CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic VDS
- Strong command of ICAM methodologies, including digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, Federation, Privileged Access Management (PAM), and digital identity management
- Keen understanding of the infrastructure required to deliver enterprise ICAM services, including Privileged Access Management (PAM), lifecycle management of digital identities, SSO, Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting
- Experience translating partner-driven identity and security constraints (e.g., CAC/PIV federation patterns, STIG-aligned hardening, controlled environments, and cross-domain/partner access) into healthcare-operable designs
- Experience delivering a converged identity platform that integrates IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
- Ability to recommend emerging ICAM technologies, trends, and best practices as as-needed reach-back support
Qualifications
- Extensive experience strategizing, designing, and implementing cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations
- Hands-On experience implementing emerging ICAM products such as CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic VDS
- Strong command of ICAM methodologies, including digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, Federation, Privileged Access Management (PAM), and digital identity management
- Keen understanding of the infrastructure required to deliver enterprise ICAM services, including Privileged Access Management (PAM), lifecycle management of digital identities, SSO, Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting
- Experience translating partner-driven identity and security constraints (e.g., CAC/PIV federation patterns, STIG-aligned hardening, controlled environments, and cross-domain/partner access) into healthcare-operable designs
- Experience delivering a converged identity platform that integrates IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
- Ability to recommend emerging ICAM technologies, trends, and best practices as as-needed reach-back support
Skills
- Extensive experience strategizing, designing, and implementing cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations
- Hands-On experience implementing emerging ICAM products such as CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic VDS
- Strong command of ICAM methodologies, including digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, Federation, Privileged Access Management (PAM), and digital identity management
- Keen understanding of the infrastructure required to deliver enterprise ICAM services, including Privileged Access Management (PAM), lifecycle management of digital identities, SSO, Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting
- Experience translating partner-driven identity and security constraints (e.g., CAC/PIV federation patterns, STIG-aligned hardening, controlled environments, and cross-domain/partner access) into healthcare-operable designs
- Experience delivering a converged identity platform that integrates IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
- Ability to recommend emerging ICAM technologies, trends, and best practices as as-needed reach-back support
Benefits
Life at Capgemini offers flexible work, healthcare including dental, vision, mental health, and well-being programs, financial well-being programs such as 401(k) and Employee Share Ownership Plan, paid time off and paid holidays, paid parental leave, family building benefits like adoption assistance, surrogacy, and cryopreservation, social well-being benefits like subsidized back-up child/elder care and tutoring, mentoring, coaching and learning programs, employee resource groups, disaster relief, and more.
Pay
$120k - $155k
Schedule
Full time