ICAM Solutions Architect

Remote - San Antonio, TX

Job Summary:

The ICAM Solutions Architect provides technical leadership in designing and implementing integration solutions between Department of the Air Force (DAF) applications and the Identity, Credential, and Access Management (ICAM) stack, including SailPoint IdentityIQ and Okta. This role focuses on developing authentication and authorization patterns, guiding application access control redesigns toward Attribute-Based Access Control (ABAC), and supporting troubleshooting, user acceptance testing (UAT), and government audits. The Architect will deliver detailed technical documentation and playbooks to ensure secure, scalable, and compliant identity solutions.

Job Duties:  

  • Design authentication and authorization patterns for applications of varying complexity (low, medium, high).  
  • Guide application teams in redesigning access control modules to align with ABAC and Zero Trust principles.  
  • Troubleshoot and resolve defects related to application integration with the ICAM stack.  
  • Develop and maintain runbooks, playbooks, integration design documents, and architecture diagrams per Performance Work Statement (PWS) requirements.  
  • Support UAT planning and validation, ensuring compliance with government audit requirements.  
  • Collaborate with application technical staff to address complex onboarding challenges using clear technical communication.

Required Qualifications:  

  • Deep expertise in designing and integrating identity solutions in enterprise or Department of Defense (DoD) environments.  
  • Proven experience implementing Single Sign-On (SSO), Multi-Factor Authentication (MFA), and account provisioning solutions.  
  • Practical knowledge of Attribute-Based Access Control (ABAC), Role-Based Access Control (RBAC), and Zero Trust access models.  
  • Proficiency with Okta (SSO, MFA, Universal Directory), SailPoint IdentityIQ (entitlement management, lifecycle events), and protocols such as SAML, OIDC, OAuth2, SCIM, LDAP, and PKI.  
  • Experience with cloud platforms like AWS GovCloud or Azure Government and design tools such as Visio or Lucidchart.  
  • Strong technical communication skills for engaging with application technical staff.  
  • Active Secret clearance.

Preferred Qualifications:  

  • Certifications: CISSP, GSLC, CSM, CIAM, or vendor-specific certifications from Azure, AWS, Okta, or SailPoint.  
  • Advanced experience with creating integration design documents, architecture diagrams, and technical playbooks.  
  • Familiarity with supporting government audits and UAT validation processes.

Get Updates

Are you interested in hearing about new opportunities at OSI VISION LLC in real time? Enter your email address to be notified automatically when new positions are posted.