By Light Professional IT Services

DevOps Lead - ICAM SSO Modernization

By Light Professional IT Services$120K — $150K *
US-AnywhereRemote in United States
Information Technology
Less than 5 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Strong experience with identity-enabled applications and SSO integrations (OIDC, OAuth2, SAML, SCIM).
  • Hands-on experience with Entra ID, Okta, or similar enterprise identity platforms.
  • Expert-level proficiency in managing CI/CD pipelines and Git workflows.
  • Solid experience with Azure cloud services and Infrastructure as Code (Terraform preferred).
  • Proven Tier 3 support background for identity and cloud infrastructure issues.
  • Excellent communication skills for conveying technical details to leadership.
  • Experience leading and mentoring DevOps teams.

Responsibilities

  • Architect and optimize CI/CD pipelines for identity-aware services and cloud-hosted ICAM components.
  • Implement Infrastructure-as-Code (Terraform) for infrastructure related to identity platforms and environment provisioning.
  • Integrate automated security scanning and compliance checks into the DevOps workflow.
  • Manage Azure environments for Entra ID and Okta workloads.
  • Oversee containerization and orchestration for identity microservices using AKS.
  • Ensure system observability through logging, monitoring, and distributed tracing.
  • Embed DevSecOps principles into all identity workflow processes.

Benefits

  • Technical leadership role with an emphasis on influencing modernization efforts.
  • Opportunity for collaboration with diverse teams across ICAM and cybersecurity.
  • Mentorship opportunities in a senior engineering context.
  • Engagement in high-security federal programs with a focus on cutting-edge technologies.
  • Chance to contribute to Zero Trust security implementations and IT compliance initiatives.
Full Job Description
Position Overview

The DevOps Lead will provide senior engineering leadership for the VA ICAM Next Generation SSO modernization effort, supporting the migration to Entra ID for SSOi and Okta for SSOe. This role drives DevSecOps automation, CI/CD modernization, cloud environment reliability, and Tier 3 support for identity-integrated applications and services.

Responsibilities

Pipeline & Platform Engineering
  • Architect, build, and optimize CI/CD pipelines supporting identity-aware services and cloud-hosted ICAM components.
  • Implement Infrastructure-as-Code (Terraform) for identity platform infrastructure, app registrations, policy objects, and environment provisioning.
  • Integrate automated security scanning, SBOM generation, compliance gates, and identity-specific validation checks.


Cloud & Environment Management
  • Manage Azure-centric environments supporting Entra ID, Okta, and ICAM modernization workloads.
  • Oversee containerization and orchestration (AKS preferred) for identity microservices, proxies, and supporting components.
  • Ensure observability across identity flows using logging, monitoring, alerting, and distributed tracing.


Security, Compliance & Zero Trust Alignment
  • Embed DevSecOps principles into identity-integrated pipelines and workflows.
  • Ensure alignment with NIST 800-63, Zero Trust Identity Pillar requirements, FedRAMP controls, and VA-specific cybersecurity directives.
  • Implement secure secrets management, identity governance patterns, and least-privilege access models across DevOps tooling.


Cross-Team Leadership & Modernization Enablement
  • Collaborate with ICAM architects, onboarding teams, cybersecurity, and application owners to accelerate SSO migrations.
  • Provide technical leadership and mentorship to DevOps engineers supporting ICAM modernization.
  • Communicate risks, dependencies, and modernization progress to program leadership with clarity and precision.


Required Experience/Qualifications

  • Strong experience supporting identity-enabled applications and SSO integrations (OIDC, OAuth2, SAML, SCIM).
  • Hands-on experience with Entra ID, Okta, or equivalent enterprise identity platforms.
  • Expert-level proficiency with CI/CD pipelines and Git-based workflows.
  • Strong experience with Azure cloud services and IaC frameworks (Terraform preferred).
  • Proven Tier 3 support experience resolving complex identity, pipeline and cloud infrastructure issues.
  • Excellent communication skills with ability to translate technical detail into leadership ready insights.
  • Experience leading and mentoring DevOps teams


Preferred Experience/Qualifications

  • Experience supporting federal ICAM programs, ATO processes, or regulated environments.
  • Familiarity with Zero Trust architectures, identity governance, and attribute-based access control (ABAC).
  • Experience with service mesh, artifact repositories, and identity-aware API gateways.


Special Requirements/Security Clearance

  • Ability to obtain and maintain a Public Trust

About By Light Professional IT Services

By Light Professional IT Services is a provider of full lifecycle information technology and telecommunications solutions to the federal government and commercial clients. The company provides services in the areas of cybersecurity, cloud computing, application development, network engineering, and strategic consulting. By Light has been recognized as one of the fastest-growing private companies in the United States by Inc. Magazine and has been named a top workplace by The Washington Post.
Learn more about By Light Professional IT Services
Size
1,500 employees
Industry
Information Technology
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at By Light Professional IT Services

More Information Technology Jobs

Find similar DevOps Lead - ICAM SSO Modernization jobs:

NationwideRemote