Identity, Credential, and Access Management Functional Architect

Location
Washington D.C.
Posted
Jan 23, 2019
Closes
Jan 25, 2019
Ref
J3T4X6776W0TQJCRZ6W
Hours
Full Time
Job Description Job Number: R0030442

Identity, Credential, and Access Management Functional Architect

Key Role:

Maintain responsibility for supporting identity life cycle management, credentialing, smart cards, including PIV and PIV-I, user attestation, compliance, and role discovery or management. Maintain responsibility for single sign-on, enterprise authentication, authorization policies, and multi-factor authentication supporting different access control models and different devices, including desktop and mobile. Leverage knowledge of HSPD-12, PIV, CAC, FIPS 201, FICAM, NIST SP 800-53, FISMA, NSTIC, and other federal ICAM-related directives, standards, and mandates. Leverage expertise with BeanShell, Java, JavaScript, or other programming languages for the customization and development of ICAM systems and services.

Basic Qualifications:
-4+ years of experience with designing, architecting, implementing, operating, and maintaining identity management solutions supporting identity life cycle management, access request and fulfillment, access certifications, compliance, and role discovery and management or access control solutions, including single sign on, enterprise authentication, authorization policies, and multi-factor authentication supporting different access control models and different devices, such as desktop or mobile
-Experience with Windows or Linux servers
-Experience with directory services, LDAP, and Web application servers
-Experience with HSPD-12, PIV, CAC, FICAM, NIST SP 800-63, FISMA, and other federal ICAM-related directives, standards, and mandates
-Experience with SQL language
-Knowledge of client and server Group Policy Objects (GPOs)
-Knowledge of PKI, PKE, and x.509 certificates and their use with smartcards, including Personal Identity Verification (PIV) cards
-Ability to obtain a security clearance
-BA or BS degree

Additional Qualifications:
-Experience with Security Assertion Markup Language (SAML) identity federation solutions
-Experience with training end users and business process engineering or optimization
-Experience with Java or other object-oriented programming languages for light customization and development of ICAM systems and services a plus
-Experience with Apache Tomcat and Microsoft IIS preferred
-Knowledge of relational databases a plus
-Knowledge of Active Directory domain, preferred
-Knowledge of USAccess, HRConnect, SailPoint IdentityIQ, SecureAuth IdP, and the Salesforce platform preferred

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We're an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

SIG2017

Similar jobs