General Dynamics Information Technology
ICAM Specialist - Remote
General Dynamics Information Technology, Fairfax, Virginia, United States, 22032
Req ID:
RQ211397
Type of Requisition:
Regular
Clearance Level Must Be Able to Obtain:
None
Public Trust/Other Required:
BI Full 6C (T4)
Job Family:
IT Infrastructure and Operations
Skills:
Access Management, Identity Governance, Secure Authentication
Experience:
10+ years of related experience
Job Description Advance how our customers operate while you advance your career. Join GDIT as an
Identity, Credential, and Access Management (ICAM) Specialist
and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.
The
Case Management Modernization (CMM) Program
is an initiative to support the
Administrative Office of the (AO) US Courts
develop a modern cloud-based solution to support all federal courts across the United States which are grouped into three types, namely Appellate, District, and Bankruptcy. This modernized case management system will eventually replace the current Case Management and Electronic Case Filing (CM/ECF) system.
The
ICAM Specialist
supports the
CMM Program
by designing, implementing, and managing secure authentication and authorization frameworks across modernized cloud-based applications. This role ensures compliance with
federal identity governance, FedRAMP, and Zero Trust Architecture (ZTA)
principles within an
AWS
environment. The
ICAM Specialist
collaborates with architecture, security, and DevSecOps teams to ensure access control, identity federation, and credential management are integrated seamlessly across all layers of the CMM application ecosystem.
Meaningful Work and Personal Impact As an
ICAM Specialist , the work you’ll do at GDIT will be impactful to the mission of the
Administrative Office (AO) of the US Courts.
You will play a crucial role in the following areas:
Design and maintain the
ICAM architecture
for identity, access, and authentication management across AWS-hosted CMM applications
Implement
federated identity and single sign-on (SSO)
solutions using modern protocols (SAML, OAuth2.0, OIDC)
Integrate
Multi-Factor Authentication (MFA)
and role-based access control (RBAC) mechanisms within enterprise systems
Collaborate with Cloud and Security Architects to enforce
Zero Trust Architecture (ZTA)
across microservices and APIs
Configure and maintain
directory services and identity providers
(e.g., AWS Cognito, Azure AD, Ping, Okta)
Support
ICAM compliance assessments , ensuring adherence to FISMA, NIST 800-63, and FedRAMP security controls
Develop and document
identity lifecycle management processes
— provisioning, deprovisioning, and access reviews
Conduct access audits, user entitlement reviews, and anomaly detection to ensure least-privilege compliance
Provide subject matter expertise in
identity federation, PKI, certificate management , and secure API authorization
Collaborate with DevSecOps teams to embed ICAM policies within CI/CD pipelines and Infrastructure-as-Code (IaC) templates
Tools & Technologies You’ll Work With
IAM & Federation:
AWS Cognito, Azure AD, Okta, Keycloak, PingFederate
Access & Compliance:
SailPoint, CyberArk, HashiCorp Vault
Cloud:
AWS IAM, KMS, CloudTrail, Lambda
Protocols:
SAML, OAuth2.0, OIDC, SCIM
Monitoring & Audit:
ELK Stack, Splunk, Datadog, Power BI
Jira, Confluence, SharePoint, MS Teams
What You’ll Need to Succeed
Technical Training, Certificate, or Degree required; Bachelor's Degree in Computer Science, Computer Programming, Computer Engineering or relevant computer-based major
strongly preferred
10+ years
of related experience in information systems, with
8+ years
of that experience in identity and access management, including
5+ years
in cloud-based federal environments
Required Skills
Strong knowledge of
identity federation protocols
(SAML, OAuth2.0, OIDC, SCIM) and modern authentication flows
Hands‑on experience with
AWS Cognito, Azure AD, Okta, Keycloak or PingFederate
for SSO and MFA implementations
Expertise with
RBAC/ABAC frameworks , policy-based access control, and least‑privilege enforcement
Familiarity with
NIST 800-63, FISMA, FedRAMP, and ZTA
standards and compliance frameworks
Experience implementing ICAM solutions in
Agile and DevSecOps
environments
Working knowledge of
PKI, digital certificates, and encryption technologies
Strong analytical and troubleshooting skills with ability to resolve identity integration issues
Bachelor’s or Master’s degree in Cybersecurity, Information Systems, or related discipline
Experience supporting
federal digital modernization
or judiciary IT programs
Knowledge of
AWS IAM, KMS, CloudTrail , and integration of ICAM with containerized workloads (ECS, EKS)
Familiarity with
Zero Trust Architecture
and microsegmentation principles
Exposure to
API gateway authentication
(Kong, Apigee, AWS API Gateway)
Experience integrating
identity governance tools
(SailPoint, Saviynt)
Excellent presentation and communication skills
Consultant mindset with the ability to work with high level customer stakeholders and build excellent customer relationships
Experience identifying and applying industry tools, solutions, methods best practices, and emerging technologies
Strong analytical skills and problem‑solving skills with the ability to formulate and communicate recommendations for improvement
Demonstrated ability to work effectively, independently, and as part of a team
Required Certification
Certified Information Systems Security Professional (CISSP)
Preferred Certifications
AWS Certified Security – Specialty
or
Azure Identity & Access Administrator
– strongly preferred
Certified Identity and Access Manager (CIAM)
or
Certified Identity Professional (CIP)
– preferred
SAFe Practitioner (SPC/SSM)
– preferred
Security Clearance Level Ability to pass a background check to obtain and maintain a position of Public Trust with the Administrative Office of the US Courts
Must be a US Person (Green Card Holder, US Permanent Resident Alien, Refugee, Asylee, US Citizen) Location Remote
GDIT IS YOUR PLACE
Growth:
AI-powered career tool that identifies career steps and learning opportunities
Support:
An internal mobility team focused on helping you achieve your career goals
Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Community:
Award‑winning culture of innovation and a military‑friendly workplace
Own Your Opportunity Explore an enterprise IT career at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your desire to drive operations forward.
The likely salary range for this position is $136,000 - $184,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US‑based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post‑tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee’s date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long‑term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
#J-18808-Ljbffr
RQ211397
Type of Requisition:
Regular
Clearance Level Must Be Able to Obtain:
None
Public Trust/Other Required:
BI Full 6C (T4)
Job Family:
IT Infrastructure and Operations
Skills:
Access Management, Identity Governance, Secure Authentication
Experience:
10+ years of related experience
Job Description Advance how our customers operate while you advance your career. Join GDIT as an
Identity, Credential, and Access Management (ICAM) Specialist
and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.
The
Case Management Modernization (CMM) Program
is an initiative to support the
Administrative Office of the (AO) US Courts
develop a modern cloud-based solution to support all federal courts across the United States which are grouped into three types, namely Appellate, District, and Bankruptcy. This modernized case management system will eventually replace the current Case Management and Electronic Case Filing (CM/ECF) system.
The
ICAM Specialist
supports the
CMM Program
by designing, implementing, and managing secure authentication and authorization frameworks across modernized cloud-based applications. This role ensures compliance with
federal identity governance, FedRAMP, and Zero Trust Architecture (ZTA)
principles within an
AWS
environment. The
ICAM Specialist
collaborates with architecture, security, and DevSecOps teams to ensure access control, identity federation, and credential management are integrated seamlessly across all layers of the CMM application ecosystem.
Meaningful Work and Personal Impact As an
ICAM Specialist , the work you’ll do at GDIT will be impactful to the mission of the
Administrative Office (AO) of the US Courts.
You will play a crucial role in the following areas:
Design and maintain the
ICAM architecture
for identity, access, and authentication management across AWS-hosted CMM applications
Implement
federated identity and single sign-on (SSO)
solutions using modern protocols (SAML, OAuth2.0, OIDC)
Integrate
Multi-Factor Authentication (MFA)
and role-based access control (RBAC) mechanisms within enterprise systems
Collaborate with Cloud and Security Architects to enforce
Zero Trust Architecture (ZTA)
across microservices and APIs
Configure and maintain
directory services and identity providers
(e.g., AWS Cognito, Azure AD, Ping, Okta)
Support
ICAM compliance assessments , ensuring adherence to FISMA, NIST 800-63, and FedRAMP security controls
Develop and document
identity lifecycle management processes
— provisioning, deprovisioning, and access reviews
Conduct access audits, user entitlement reviews, and anomaly detection to ensure least-privilege compliance
Provide subject matter expertise in
identity federation, PKI, certificate management , and secure API authorization
Collaborate with DevSecOps teams to embed ICAM policies within CI/CD pipelines and Infrastructure-as-Code (IaC) templates
Tools & Technologies You’ll Work With
IAM & Federation:
AWS Cognito, Azure AD, Okta, Keycloak, PingFederate
Access & Compliance:
SailPoint, CyberArk, HashiCorp Vault
Cloud:
AWS IAM, KMS, CloudTrail, Lambda
Protocols:
SAML, OAuth2.0, OIDC, SCIM
Monitoring & Audit:
ELK Stack, Splunk, Datadog, Power BI
Jira, Confluence, SharePoint, MS Teams
What You’ll Need to Succeed
Technical Training, Certificate, or Degree required; Bachelor's Degree in Computer Science, Computer Programming, Computer Engineering or relevant computer-based major
strongly preferred
10+ years
of related experience in information systems, with
8+ years
of that experience in identity and access management, including
5+ years
in cloud-based federal environments
Required Skills
Strong knowledge of
identity federation protocols
(SAML, OAuth2.0, OIDC, SCIM) and modern authentication flows
Hands‑on experience with
AWS Cognito, Azure AD, Okta, Keycloak or PingFederate
for SSO and MFA implementations
Expertise with
RBAC/ABAC frameworks , policy-based access control, and least‑privilege enforcement
Familiarity with
NIST 800-63, FISMA, FedRAMP, and ZTA
standards and compliance frameworks
Experience implementing ICAM solutions in
Agile and DevSecOps
environments
Working knowledge of
PKI, digital certificates, and encryption technologies
Strong analytical and troubleshooting skills with ability to resolve identity integration issues
Bachelor’s or Master’s degree in Cybersecurity, Information Systems, or related discipline
Experience supporting
federal digital modernization
or judiciary IT programs
Knowledge of
AWS IAM, KMS, CloudTrail , and integration of ICAM with containerized workloads (ECS, EKS)
Familiarity with
Zero Trust Architecture
and microsegmentation principles
Exposure to
API gateway authentication
(Kong, Apigee, AWS API Gateway)
Experience integrating
identity governance tools
(SailPoint, Saviynt)
Excellent presentation and communication skills
Consultant mindset with the ability to work with high level customer stakeholders and build excellent customer relationships
Experience identifying and applying industry tools, solutions, methods best practices, and emerging technologies
Strong analytical skills and problem‑solving skills with the ability to formulate and communicate recommendations for improvement
Demonstrated ability to work effectively, independently, and as part of a team
Required Certification
Certified Information Systems Security Professional (CISSP)
Preferred Certifications
AWS Certified Security – Specialty
or
Azure Identity & Access Administrator
– strongly preferred
Certified Identity and Access Manager (CIAM)
or
Certified Identity Professional (CIP)
– preferred
SAFe Practitioner (SPC/SSM)
– preferred
Security Clearance Level Ability to pass a background check to obtain and maintain a position of Public Trust with the Administrative Office of the US Courts
Must be a US Person (Green Card Holder, US Permanent Resident Alien, Refugee, Asylee, US Citizen) Location Remote
GDIT IS YOUR PLACE
Growth:
AI-powered career tool that identifies career steps and learning opportunities
Support:
An internal mobility team focused on helping you achieve your career goals
Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Community:
Award‑winning culture of innovation and a military‑friendly workplace
Own Your Opportunity Explore an enterprise IT career at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your desire to drive operations forward.
The likely salary range for this position is $136,000 - $184,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US‑based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post‑tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee’s date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long‑term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
#J-18808-Ljbffr