ICAM Federation & Integration Engineer

ICAM Federation & Integration Engineer

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Secret

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

* * *

The Opportunity:
The Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) Program is seeking an ICAM Federation & Integration Engineer to support the United States Coast Guard (USCG) with enterprise identity federation, access control integration, and secure authentication enablement across hybrid and cloud platforms. This position focuses on implementing and supporting secure authentication flows (SAML, OAuth, OIDC), identity brokering, and integration of identity-aware applications with Azure Active Directory (AAD), Microsoft Entra ID, and PKI services. The role is vital to enabling secure cross-boundary access and driving the adoption of Zero Trust Architecture across USCG systems.

Responsibilities:
• Design and manage SAML, OAuth 2.0, and OpenID Connect federation integrations for enterprise and mission-critical applications.
• Implement identity federation solutions using Azure Active Directory (AAD), Microsoft Entra ID, and support for legacy IDPs.
• Enable secure cross-tenant and cross-domain access through Azure B2B, Conditional Access, and Trust Framework Policies.
• Configure and troubleshoot secure authentication and authorization flows between cloud apps and internal identity systems.
• Integrate PKI authentication with Azure AD, on-prem AD FS, and third-party IDPs for secure access control.
• Collaborate with USCG cybersecurity and networking teams to validate identity integration requirements and policy enforcement.
• Document federation architectures, authentication flow diagrams, integration procedures, and identity access control mappings.
• Support ICAM architecture alignment with DoD Zero Trust Reference Architecture, NIST 800-63, and DHS ICAM Roadmap.
• Monitor authentication events and federation logs via Azure AD sign-in logs, Microsoft Sentinel, and identity protection tools.
• Assist in audit preparation, ATO support, and ICAM compliance reviews by producing control evidence and system documentation.

Qualifications:
• 5+ years of experience in identity federation, authentication integration, or IAM architecture.
• Hands-on experience configuring SAML, OAuth, and OpenID Connect authentication for SaaS and on-premise applications.
• 3+ years working with Azure AD (AAD), Microsoft Entra ID, or equivalent cloud identity providers.
• Experience with ADFS, PKI integration, certificate-based authentication, and trust relationships.
• Familiarity with Zero Trust Architecture principles and secure identity brokering models.
• Strong knowledge of identity protocols, token-based access control, and authentication troubleshooting.
• Experience producing security documentation, integration diagrams, and supporting RMF or FedRAMP control mappings.

Desired:
• Bachelor’s degree in Cybersecurity, Information Systems, or related technical discipline.
• Certifications such as SC-300, SC-100, CISSP, or Certified Identity and Access Manager (CIAM).
• Experience with Azure AD B2B/B2C, cross-tenant access settings, and identity protection policies.
• Knowledge of DHS ICAM Architecture, DoD ICAM Implementation Guide, and NIST SP 800-63-3.
• Prior experience supporting USCG, DHS, or DoD enterprise identity programs.

-

________________________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

 

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

 

Your potential is limitless. So is ours.

Learn more about CACI here.

________________________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

Since this position can be worked in more than one location, the range shown is the national average for the position.

The proposed salary range for this position is:

$82,100-$172,400

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.