Identify, Credentialing, and Access Management (ICAM) Subject Matter Expert (SME)

Role Overview

The Identify, Credentialing, and Access Management (ICAM) Subject Matter Expert (SME) supports the Transportation Security Administration Information Technology (TSA IT) Task Order by providing ICAM support and coordination across all TSA FISMA systems. This role involves providing architectural guidance, oversight, and advisement services to ensure identity management system technologies are integrated and meeting the appropriate security requirements.

Responsibilities

• Assist the Information Assurance & Cybersecurity Division’s (IAD) integration with DHS ICAM teams to ensure that DHS-led initiatives have appropriate integration with TSA systems.
• Engage in ICAM meetings supporting various FISMA systems, provide security-related input, and make recommendations to IAD federal staff.
• Understand and integrate new ICAM technologies into TSA’s systems as required.
• Support DHS Identity Management service efforts and ICAM integrations.
• Provide reporting and recommendations for TSA integration with DHS ICAM systems and fulfill department-wide ICAM reporting requirements.
• Perform data analysis for determining data call requirements, such as the number of privileged users per system and user accounts not leveraging PIV.
• Generate periodic reporting (weekly, monthly, quarterly) of DHS ICAM FISMA Metrics.
• Conduct reviews and provide feedback on ICAM designs and implementations.
• Work with operational teams to prototype and pilot ICAM solutions.
• Support or lead bi-weekly ICAM integration meetings.
• Collaborate with Cloud SMEs to ensure Identity Management services are integrated with systems leveraging cloud environments.
• Support non-standard activities to provide benefit to security testing requirements.

Requirements

• At least ten (10) years of technical IT security experience.
• At least five (5) years of experience performing ICAM security functions.
• At least one (1) year of experience performing ICAM functions for Federal IT systems.
• Active Secret security clearance.
• Professional certifications such as CISSP, CISA, or Certified System Engineer ICAM PACS (CSEIP).
• Solid background and knowledge of common service offerings within ICAM technologies.
• Experience deploying and configuring SailPoint, OKTA, CyberArk, Azure/AWS, Active Directory, LDAP, SSO, and Federations.
• Familiarity with data analytics, cloud, virtualization, remote access, and mobile technologies.
• Ability to work independently with minimal oversight.