ICAM Solutions Architect

• Design authentication and authorization patterns for applications of varying complexity (low, medium, high).
• Guide application teams in redesigning access control modules to align with ABAC and Zero Trust principles.
• Troubleshoot and resolve defects related to application integration with the ICAM stack.
• Develop and maintain runbooks, playbooks, integration design documents, and architecture diagrams per Performance Work Statement (PWS) requirements.
• Support UAT planning and validation, ensuring compliance with government audit requirements.
• Collaborate with application technical staff to address complex onboarding challenges using clear technical communication.

• Deep expertise in designing and integrating identity solutions in enterprise or Department of Defense (DoD) environments.
• Proven experience implementing Single Sign-On (SSO), Multi-Factor Authentication (MFA), and account provisioning solutions.
• Practical knowledge of Attribute-Based Access Control (ABAC), Role-Based Access Control (RBAC), and Zero Trust access models.
• Proficiency with Okta (SSO, MFA, Universal Directory), SailPoint IdentityIQ (entitlement management, lifecycle events), and protocols such as SAML, OIDC, OAuth2, SCIM, LDAP, and PKI.
• Experience with cloud platforms like AWS GovCloud or Azure Government and design tools such as Visio or Lucidchart.
• Strong technical communication skills for engaging with application technical staff.
• Active Secret clearance.

• Certifications: CISSP, GSLC, CSM, CIAM, or vendor-specific certifications from Azure, AWS, Okta, or SailPoint.
• Advanced experience with creating integration design documents, architecture diagrams, and technical playbooks.
• Familiarity with supporting government audits and UAT validation processes.

OSI VISION LLC