Posted today
Top Secret
Unspecified
Unspecified
IT - Security
Tampa, FL (On-Site/Office)
Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent.
Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.
We are seeking an ICAM Identity Engineer to provide hands-on implementation and operational support for enterprise identity, credential, and access management platforms.
The Role
The ICAM Identity Engineer is a hands-on technical specialist responsible for deploying, configuring, and maintaining identity platforms that enforce least-privilege access and Zero Trust principles. This role focuses on execution within Identity Providers (IdP), Privileged Access Management (PAM), and Identity Governance and Administration (IGA) solutions across cloud and on-prem environments.
Responsibilities
Required Qualifications
Preferred Qualifications
EEO Commitment
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.
Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.
We are seeking an ICAM Identity Engineer to provide hands-on implementation and operational support for enterprise identity, credential, and access management platforms.
The Role
The ICAM Identity Engineer is a hands-on technical specialist responsible for deploying, configuring, and maintaining identity platforms that enforce least-privilege access and Zero Trust principles. This role focuses on execution within Identity Providers (IdP), Privileged Access Management (PAM), and Identity Governance and Administration (IGA) solutions across cloud and on-prem environments.
Responsibilities
- Implement and maintain Microsoft Entra ID Conditional Access policies and CAC/PKI authentication
- Manage federation and SSO integrations using Ping Federate (SAML, OIDC, MFA)
- Onboard and manage privileged accounts within an enterprise PAM solution (e.g., Delinea)
- Configure credential rotation, session monitoring, and Just-In-Time / Just-Enough-Administration workflows
- Implement SailPoint IGA workflows for Joiner-Mover-Leaver lifecycle automation and access certification
- Administer Active Directory using delegated administration tools (e.g., Active Roles)
- Manage Linux identity and authorization policies using Red Hat IdM (HBAC, sudo)
- Troubleshoot identity, authentication, and access control issues across enterprise environments
Required Qualifications
- Active DoD Top Secret clearance with SCI eligibility
- DoD 8140 compliant (IAT Level II or higher)
- Hands-on experience with at least one core identity platform:
- Microsoft Entra ID
- Enterprise PAM (e.g., Delinea)
- Enterprise IGA (e.g., SailPoint)
- Strong understanding of identity security principles (least privilege, MFA, RBAC/ABAC, JIT/JEA)
- Experience administering Active Directory and enterprise identity policies
- Ability to implement and troubleshoot complex access control and security configurations
- Labor Category Alignment
- Journeyman: 3-10 years of experience; BA/BS or MA/MS
- Senior: 10+ years of experience; MA/MS; supports mission-critical efforts and may lead others
- SME: Recognized ICAM expert providing strategic guidance and leadership on complex identity initiatives
Preferred Qualifications
- Microsoft Certified: Identity and Access Administrator (SC-300)
- Delinea Certified Administrator
- SailPoint IdentityNow certification
- Ping Federate certification
- Experience with Red Hat IdM
EEO Commitment
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.
group id: 10434447
