The Opportunity:

The ICAM Solutions Architect provides technical leadership across identity, credential, and access services by shaping ICAM strategy, defining and governing architecture, aligning roadmaps with mission and security priorities, and ensuring seamless integration of ICAM capabilities across the agency. This role partners with engineering, cybersecurity, governance bodies, and mission stakeholders to deliver a secure, modern, and scalable ICAM ecosystem in alignment with federal mandates and Zero Trust principles.

Responsibilities:

ICAM Strategy & Enterprise Architecture

• Develop and maintain the enterprise ICAM strategy and future state architecture across identity, credential, authentication, and access services.
• Define modernization roadmaps aligned with Zero Trust, cloud identity patterns, and federal ICAM guidance (M 19 17, A 130, NIST 800 63, 800 53).
• Conduct architectural assessments across ICAM service towers (IdMAX, NED, NCAD, Entra ID, NAMS/SNAMS, Credentialing Services, eAuth, EPACS, PKI).

Governance, Compliance & Risk Alignment

• Lead architectural alignment with federal identity requirements, including OMB, FISMA, NIST, CDM, and agency wide cybersecurity strategies.
• Support ICAM governance bodies by preparing architecture artifacts, decision briefs, risk assessments, and compliance evaluations.
• Establish technical guardrails, standards, and reference architectures for identity lifecycle, access provisioning, credentialing, and authentication services.

ICAM Integration, Interoperability & Data Flows

• Define and manage integration patterns across identity stores, directories, authentication services, access workflows, and credential platforms.
• Architect enterprise data flows between IdMAX 12 NED 12 NCAD/Entra ID 12 NAMS/SNAMS 12 apps and mission systems.
• Ensure interoperability with federal shared services (FPKI, Idemia, DHS, GSA) and enterprise solutions (Microsoft, ServiceNow, cloud platforms).

Technical Leadership & Roadmap Execution

• Provide technical oversight to ICAM engineering teams responsible for implementing and operating identity, credentialing, PKI, authentication, and access tools.
• Review and approve solution designs, data models, integrations, and changes to ICAM platforms.02
• Monitor emerging identity trends (phishing-resistant MFA, passwordless, FIDO2, device identity, behavioral analytics).
• Participate in sprint reviews, backlog prioritization, and cross-functional planning to ensure architectural alignment.02
• Performance, Metrics & Continuous Improvement
• Define ICAM architectural performance metrics and KPIs (identity assurance, provisioning times, certificate lifecycle health, authentication quality, account hygiene).
• Guide continuous improvement initiatives, addressing technical debt, legacy dependencies, and modernization blockers.

Qualifications:

Required:

• 10+ years of experience in Identity, Credential, and Access Management architecture or enterprise security architecture.
• Deep knowledge of identity lifecycle workflows, identity stores, directory services, authentication protocols (SAML, OIDC/OAuth, Kerberos), PKI.02
• Hands on experience with one or more NASA-relevant systems: Active Directory/Entra ID, ADFS, IdMAX, PIV/PKI, NAMS/SNAMS, Siteminder/eAuth, Credentialing systems, EPACS.02
• Strong familiarity with federal ICAM guidance: OMB A 130, M 19 17, Zero Trust (M 22 09), NIST SP 800 63, 800 53, FIPS 201.02
• Demonstrated ability to create technical architecture artifacts (diagrams, data flows, models, standards).02
• Experience leading technical teams or influencing engineers in a large enterprise environment.
• 02

Desired:

• Experience with cloud identity governance (Azure AD/Entra ID, AWS IAM, GCP IAM).
• Advanced understanding of Zero Trust identity, authentication patterns.02
  
• Background integrating ICAM into CI/CD pipelines, automation frameworks.

What You Can Expect:

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you
9ll be part of a high-performing group dedicated to our customer
9s missions and driven by a higher purpose 12 to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You
9ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground 12 in your career and in our legacy.

Pay Range:

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.

Since this position can be worked in more than one location, the range shown is the national average for the position.

The proposed salary range for this position is: