Cloud ICAM Engineer

Description

Join us in transforming how technology serves those who serve.

At Leidos, we're not just delivering solutions - we're pioneering the future of defense and intelligence technology. Our diverse teams of innovators unite around a singular purpose: empowering our customers to succeed in their critical missions. We believe in leading with integrity, investing in our communities, and building sustainably for tomorrow.

Shape the future of digital defense.

Our Digital Modernization sector is at the forefront of next-generation technology, architecting cutting-edge solutions in cyber defense, logistics optimization, security operations, and decision intelligence. We're the minds behind the mission-critical systems that keep our nation secure.

Ready to engineer solutions that matter?

Primary Responsibilities:

The Digital Modernization Sector at Leidos is seeking a dynamic Senior Software Engineer to support cloud modernization initiatives for the United States Coast Guard (USCG) at Command, Control, Communication, Computer, Cyber, and Intelligence Service Center (C5ISC) in the Alexandria, VA area. This role is part of a high-impact program focused on delivering secure, scalable cloud solutions that enable operational agility and resilience across the USCG enterprise.

As an ICAM engineer you will support the modernization and security of its enterprise cloud infrastructure. This role is critical to implementing secure, scalable, and compliant identity and access solutions across AWS and Azure environments in alignment with federal cybersecurity mandates and Zero Trust Architecture principles. You'll work closely with cloud engineers, cybersecurity analysts, and program leadership to drive continuous improvement and deliver value to the mission.

Key Responsibilities

• Design, implement, and maintain ICAM solutions across AWS and Azure cloud platforms

• Integrate cloud identity services with on-premises systems such as Active Directory and Azure AD

• Develop and enforce role-based access control (RBAC), attribute-based access control (ABAC), and policy-based access models

• Implement and manage identity federation using SAML, OAuth2, and OpenID Connect

• Automate identity lifecycle processes including provisioning, de-provisioning, and access reviews

• Securely manage credentials, secrets, and tokens using tools like AWS Secrets Manager and Azure Key Vault

• Support the implementation of Zero Trust Architecture in accordance with NIST standards

• Conduct access audits, generate compliance reports, and support FISMA, FedRAMP, and DoD RMF requirements

• Collaborate with cybersecurity, cloud engineering, and application teams to ensure secure and seamless access across systems

• Maintain documentation, diagrams, and standard operating procedures for ICAM systems

• Support cross-functional coordination across engineering, cybersecurity, and program management teams

• Promote continuous improvement through feedback loops and process refinement

• Ensure alignment with USCG mission priorities and Leidos delivery standards

Basic Qualifications:

• Bachelor's degree in a related field (e.g., Computer Science, Information Systems, Business)

• 8+ years of experience in ICAM or cloud security engineering

• Hands-on experience with AWS IAM, Azure AD, and cloud-native access control services

• Proficiency in identity federation protocols and integration with enterprise identity providers

• Experience with scripting and automation (e.g., PowerShell, Python, Terraform)

• Familiarity with federal cybersecurity frameworks including NIST 800-53, 800-63, and 800-207

• Strong understanding of Zero Trust principles and cloud security best practices

• Excellent facilitation, communication, and stakeholder engagement skills

• Ability to work in a fast-paced, mission-driven environment

• Certifications such as AWS Security Specialty, Microsoft Certified: Identity and Access Administrator, or CISSP

• Must be a U.S. Citizen have a Public Trust and be able to obtain a Secret Clearance

Preferred Qualifications:

• Experience supporting ICAM in a federal or DoD environment

• Knowledge of Continuous Diagnostics and Mitigation (CDM) and ICAM dashboards

• Prior experience supporting DHS, USCG, or other federal cloud modernization efforts

• Strong documentation, communication, and cross-functional collaboration skills.

• Experience working with technical teams in cloud, cybersecurity, or enterprise IT environments

Come break things (in a good way). Then build them smarter.

We're the tech company everyone calls when things get weird. We don't wear capes (they're a safety hazard), but we do solve high-stakes problems with code, caffeine, and a healthy disregard for "how it's always been done."

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#Remote