Identity, Credential, and Access Management (ICAM) Subject Matter Expert (SME)
Capgemini · McLean, VA · 2 wk ago
HybridConsulting$120k–$155k/yrFull-time
About the role
Serving as as-needed reach-back support, the ICAM SME recommends emerging ICAM technologies, trends, and best practices to advance VA’s ICAM transformation initiatives, drawing on deep experience designing and implementing cutting-edge ICAM solutions in large, complex organizations.
Responsibilities
- Recommend emerging ICAM technologies, trends, and best practices to help VA advance its ICAM transformation initiatives on an as-needed, reach-back basis
- Strategize, build, and implement cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations
- Apply ICAM methodologies such as digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, federation, Privileged Access Management (PAM), and digital identity management
- Advises on the infrastructure required to deliver enterprise ICAM services, including PAM, lifecycle management of digital identities, Single Sign-On (SSO), Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting
- Support integration with Department of War (DoW)-aligned identity and security expectations (e.g., CAC/PIV federation patterns, STIG-aligned hardening, controlled environments, and cross-domain/partner access) and translate those constraints into healthcare-operable designs
- Guide a converged identity platform approach integrating IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
Requirements
- S. Citizenship
- Ability to obtain and maintain a Tier 4 / High Risk background investigation (High Risk Public Trust), as required for all task areas under this contract
- Extensive experience strategizing, designing, and implementing cutting-edge ICAM solutions in large, complex organizations similar in size and scope to VA, including Fortune 500, commercial, state, federal, and healthcare organizations
- Hands-On experience implementing emerging ICAM products such as CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic VDSS
- Strong command of ICAM methodologies, including digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, Federation, Privileged Access Management (PAM), and digital identity management
- Keen understanding of the infrastructure required to deliver enterprise ICAM services, including Privileged Access Management (PAM), lifecycle management of digital identities, SSO, Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA, along with day-to-day operations, continuous monitoring, system upgrades, and troubleshooting
- Experience translating partner-driven identity and security constraints (e.g., CAC/PIV federation patterns, STIG-aligned hardening, controlled environments, and cross-domain/partner access) into healthcare-operable designs
- Experience delivering a converged identity platform that integrates IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
- Ability to recommend emerging ICAM technologies, trends, and best practices as as-needed reach-back support
Qualifications
- Experience supporting the Department of Veterans Affairs (VA) or another large federal health agency
- Experience supporting or integrating with Department of War (DoW)-aligned identity and security environments
- Hands-on experience with VA’s incumbent ICAM stack (e.g., CyberArk, Okta, Saviynt, Microsoft Entra ID)
Skills
- Strong command of ICAM methodologies, including digital wallets, cloud-based solutions, advanced MFA, biometrics, conditional access, contextual-based authentication, Federation, Privileged Access Management (PAM), and digital identity management
- Experience with emerging ICAM technologies such as CyberArk, Okta, SailPoint, Saviynt, and Radiant Logic VDSS
- Experience with infrastructure required to deliver enterprise ICAM services, including Privileged Access Management (PAM), lifecycle management of digital identities, SSO, Federated SSO (FSSO), Cross-Domain SSO (CDSSO), and MFA
- Experience translating partner-driven identity and security constraints into healthcare-operable designs
- Experience delivering a converged identity platform that integrates IGA, Cloud Privileged Access Management (CPAM), Application Governance (GRC), SSO, and Third-Party Access Governance into a single, cloud-native solution
- Ability to recommend emerging ICAM technologies, trends, and best practices as as-needed reach-back support
Benefits
- No information provided about benefits
Pay
- No information provided about pay
Schedule
- No information provided about schedule