ICAM Policy Specialist

Identity Credential Access Management (ICAM) Policy Specialist

General Info:
Citizenship Required: US Citizenship
Clearance: Secret
Job Duration: Full Time
Site: Washington D.C. Metro Area
Travel: 5% or Less

Position Overview:
Support the development, implementation and oversight of Identity, Credential and Access Management (ICAM) policies and governance process, ensuring alignment with federal standards (NIST, FICAM) and support audit readiness, risk mitigation and Zero Trust initiatives across enterprise systems. Requires a strong background in identity governance, compliance frameworks and access control policies with the ability to translate regulatory requirements into actionable controls.

Responsibilities:

• Develop, review, and maintain ICAM policies, standards, and procedures
• Ensure alignment with NIST 800-53, NIST 800-63, FISMA, and Zero Trust guidance
• Define access control policies including RBAC/ABAC models and least privilege principles
• Support internal and external audits (e.g., FISMA, ATO, FedRAMP)
• Conduct access reviews and certification campaigns
• Identify compliance gaps and recommend remediation strategies
• Maintain documentation for audit evidence and reporting
• Oversee identity lifecycle processes (joiner/mover/leaver)
• Support governance tools (e.g., SailPoint, Saviynt) for access certification and policy enforcement
• Monitor adherence to identity and access policies across systems
• Identify and assess risks related to identity and access controls
• Track remediation activities and ensure timely resolution
• Support continuous monitoring initiatives
• Work with security, engineering, and application teams to enforce policies
• Translate compliance requirements into technical requirements
• Provide guidance on ICAM best practices and regulatory expectations
• Develop reports and dashboards on:
  • Access certification completion
  • Privileged account usage
  • Policy compliance metrics
• Present findings to leadership and audit teams

Education and Experience Required:

• Bachelor’s degree in Cybersecurity, Information Systems, or related field (or equivalent experience)
• 5+ years of experience in IAM/ICAM, cybersecurity, or compliance roles
• Strong knowledge of NIST 800-53 / 800-63
• FICAM architecture (federal environments preferred)
• Experience with identity governance and access control processes
• Familiarity with IGA tools (e.g., SailPoint, Saviynt)
• Strong analytical, documentation, and communication skills

Preferred Qualifications:

• Active Secret or Top Secret clearance
• Certifications such as:
  • CISSP
  • CISM
  • CRISC
• Experience with ServiceNow, Archer, or other GRC tools
• Understanding of Zero Trust architecture and identity security
• Experience supporting federal agencies or government contractors