Solutions Architect – Identity & Access Management Modernization

Description

Position Overview

We are seeking a hands-on Solutions Architect to serve as the technical lead for a large-scale Identity & Access Management (IAM) modernization initiative supporting a civilian federal agency. This role owns the end-to-end technical architecture, design, and implementation of the solution and works hand-in-hand with the Project Manager to ensure successful delivery.

The Solutions Architect will act as the primary technical authority, directing engineers, defining architecture patterns, and guiding the migration from legacy platforms  to modern Zero Trust-aligned identity, cloud, and privileged access solutions. This is a hands-on role for a senior technologist who can design, build, troubleshoot, and lead.

Requirements

Key Responsibilities

Technical Leadership & Architecture

• Serve as the technical lead and solution owner for IAM modernization initiatives.
   
• Design and implement target-state IAM architectures aligned with Zero Trust principles.
   
• Lead the migration from legacy infrastructure to modern IAM solutions.
   
• Define integration patterns across identity, authentication, authorization, and privileged access systems.
   
• Act as the final technical authority on architecture, design decisions, and implementation approaches.
   

Hands-On Engineering & Oversight

• Perform hands-on architecture and engineering activities as needed (configuration guidance, troubleshooting, design validation).
   
• Direct and mentor IAM engineers, PAM engineers, and cloud engineers.
   
• Review and approve technical designs, configurations, scripts, and deployment plans.
   
• Oversee Tier 3 operations and complex issue resolution.
   

PAM & Privileged Access

• Architect and oversee PAM implementations using CyberArk, Keep Security, or equivalent platforms.
   
• Define privileged access models, vaulting strategies, session management, and role-based access controls.
   
• Ensure privileged access aligns with Zero Trust and least-privilege principles.
   

Security, Compliance & Governance

• Ensure solutions align with federal compliance frameworks including:
   
  • NIST 800-53 / 800-63
     
  • FISMA
     
  • FedRAMP
     
  • Zero Trust Architecture (ZTA)
     
• Support ATO activities by providing architecture diagrams, control mappings, and technical documentation.
   
• Collaborate with security teams to address findings, POA&Ms, and audit responses.
   

Agile Delivery & Collaboration

• Work closely with the Project Manager to support Agile delivery (sprint planning, backlog refinement, reviews).
   
• Provide technical input for estimates, dependencies, risks, and mitigation strategies.
   
• Participate in customer meetings, design reviews, and technical briefings.

Required Qualifications

• U.S. Citizenship required; ability to obtain a Public Trust clearance
   
• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (or equivalent experience).
   
• 8+ years of experience in IAM, cybersecurity, or enterprise identity engineering roles.
   
• Experience leading IAM migrations from legacy platforms to modern cloud-based solutions.
   
• Strong understanding of Zero Trust Architecture and identity-centric security models.
   
• Proven experience directing and leading engineers in a delivery environment.
   
• Strong documentation, troubleshooting, and customer-facing communication skills.
   

Preferred Qualifications

• Experience supporting federal civilian agencies.
   
• Microsoft identity or security certifications.
   
• Experience supporting ATO processes and security assessments.
   
• Familiarity with hybrid identity, federation, PKI, and directory services.
• CISSP certification.