Kentro · 9 hours ago
ICAM Architect - Zero Trust SME
Tampa, FL
Full-time
Onsite
Senior Level, Lead/Staff
10+ years expKentro is a company dedicated to innovation and collaboration, seeking a highly skilled Identity, Credential, and Access Management (ICAM) Architect to serve as a Subject Matter Expert in Zero Trust implementation. The role involves leading the design, integration, and governance of enterprise identity solutions aligned with DoD cybersecurity standards.
Information Technology & Services
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Serve as the lead ICAM architect and SME for Zero Trust implementation across enterprise systems
Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
Oversee the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
Provide expert guidance and mentorship to engineering teams, vendors, and stakeholders
Develop roadmaps, technical artifacts, and implementation plans for phased ICAM adoption within a Zero Trust framework
Lead proof-of-concepts (POCs) and technology evaluations for emerging identity and Zero Trust solutions
Qualification
Required
Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field (Master's preferred)
10+ years of experience in enterprise identity and access management architecture
Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
Experience with DoD enterprise solutions such as Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
Certifications such as CISSP, CCSP, CISM, Azure Solutions Architect, AWS Security Specialty, or GIAC highly preferred
Must have an active TS/SCI
Must meet updated ID requirements: https://www.gsa.gov/technology/it-contract-vehicles-and-purchasing-programs/federal-credentialing-services/get-appointment-help/bring-required-documents
If you do not currently meet the ID requirements outlined, you must be willing and able to update your current forms of ID in a timely manner to complete the suitability process successfully
Preferred
Experience supporting DoD or Federal government environments
Familiarity with Zero Trust Network Access (ZTNA) and continuous authentication models
Strong communication skills with ability to brief senior leadership and interface with stakeholders
Ability to lead teams in complex, multi-vendor environments
Benefits
Paid time off
Healthcare benefits
Supplemental benefits
401k including an employer match
Discount perks
Rewards
Education reimbursement for certifications, degrees, or professional development
Funds for activities - virtual and in-person - e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations
Company
Kentro
IT Concepts has transformed into Kentro - your center for innovation, excellence, and growth.
501-1000 employees
Funding
Current Stage
Late StageCompany data provided by crunchbase