The Senior ICAM Engineer will provide expert-level Identity, Credential, and Access Management (ICAM) support to the United States Coast Guard (USCG), leading security, compliance, and modernization initiatives. This role is critical in implementing Zero Trust Architecture (ZTA), managing Microsoft Entra ID (formerly Azure AD) integrations, and supporting enterprise-wide identity and network security operations.

The ideal candidate will have extensive experience in network architecture, boundary protection, authentication and authorization frameworks, and compliance with DoD and NIST standards. The Senior ICAM Engineer will be responsible for architecting secure, scalable identity services while working cross-functionally with cybersecurity teams, infrastructure engineers, and leadership to enhance the Coast Guard’s overall security posture.

You Will:

Integrate and Mature ICAM Initiatives: Enhance Microsoft Entra ID capabilities to improve authentication, authorization, and access control across NIPRNet, SIPRNet, and cloud environments. Implement Zero Trust Strategies: Develop and integrate Zero Trust principles, Multi-Factor Authentication (MFA), and Conditional Access policies to strengthen USCG’s security framework. Boundary Protection & Cybersecurity: Support DMZ hardening, ICAM security policies, and enforce compliance with NIST 800-53, DISA STIGs, and DoD RMF guidelines. Identity Lifecycle Management: Drive automated onboarding/offboarding using Master Personnel Management (MPM) and other enterprise tools to streamline access provisioning and role-based access control (RBAC). Threat Analysis & Risk Management: Collaborate with USCG Cyber Command and DHS agencies to identify and mitigate threats, ensuring adherence to CCRI inspection requirements. Secure Cloud & SaaS Integration: Assist in the integration of Microsoft 365, SaaS applications, and hybrid-cloud security models, including Secure Transport for O365 and MEDCoI. Cross-Functional Collaboration: Work closely with NIWC, DHS, DoD, and commercial vendors to ensure seamless interoperability of identity services and compliance with federal cybersecurity mandates. Technical Leadership & Training: Provide mentorship and technical oversight to junior engineers, ensuring knowledge transfer and best practices adoption. Privileged Access Workstation (PAW) Security: Design, implement, and enforce Privileged Access Workstation (PAW) strategies to mitigate cyber threats, ensuring secure administrative access within USCG networks. PowerApps for MPM Backbone: Lead the development and enhancement of Microsoft PowerApps solutions to serve as the foundation for Master Personnel Management (MPM), supporting automated identity governance and workflow efficiency. Application Onboarding & Cloud Migration Support: Provide case management support to application owners transitioning services to the cloud, ensuring compliance with ICAM security frameworks and Zero Trust policies. Architectural Design for Denied, Disrupted, Intermittent, and Limited (DDIL) Environments: Develop ICAM and network security strategies optimized for USCG cutter environments where low-bandwidth, high-latency, and network disruptions impact connectivity to cloud services. ICAM Support for MVD (Mobility Virtual Desktop): Architect and manage ICAM security frameworks for MVD, ensuring secure and seamless access for remote and mobile USCG users, enhancing operational flexibility while maintaining Zero Trust security principles. Configuration of Federation, Business-to-Business (B2B), and Business-to-Consumer (B2C) Identity Models: Design, implement, and manage federated identity solutions to facilitate secure authentication and identity management between USCG, DoD, federal agencies, and external partners. Entra ID Lifecycle Management: Create, enhance, and maintain Microsoft Entra ID Lifecycle Management features, including Privileged Identity Management (PIM), Access Reviews, and Access Packages to enforce role-based security controls and compliance.

You Have

U.S. Citizenship & Active Top Secret/SCI Clearance (Required). Bachelor’s Degree in IT, Cybersecurity, or related field (or equivalent experience). 10+ years of experience in ICAM, network security, or cybersecurity operations within DoD, DHS, or federal agencies. Expertise in Identity and Access Management (IAM) solutions, including Microsoft Entra ID (Azure AD), Active Directory, SAML, OAuth, and PKI. Strong background in Network Security (e.g., Firewalls, VPNs, IDS/IPS, Secure Transport, Boundary Protection, Network Access Control). Experience with NIST 800-53, DISA STIGs, and DoD RMF guidelines for identity security compliance. Deep understanding of Zero Trust Architecture (ZTA) principles and implementation strategies. Knowledge of cloud security models (AWS, Azure, Microsoft GCC High) and hybrid-cloud authentication frameworks. Proficiency in enterprise network environments (JRSS, JIE, DoD PPSM/Whitelist, Secure Transport, DMVPN, and Software-Defined Networks). Security+ and ITILv3 Certifications required; CISSP or similar is a plus.

We would be impressed:

Experience managing identity services for large-scale DoD or DHS environments. Familiarity with Cybersecurity Maturity Model Certification (CMMC) frameworks. Knowledge of ICAM integration with Cloud-based SaaS applications and zero-trust identity models. Expertise in identity federation, conditional access policies, and access governance.

Why Join Us?

Support a National Security Mission: Contribute directly to strengthening the USCG’s cybersecurity posture and national defense initiatives. Leverage Cutting-Edge Technologies: Work with Microsoft Entra ID, Zero Trust, and advanced cybersecurity solutions to drive federal IT modernization. Career Growth & Leadership Opportunities: Lead high-visibility security initiatives, collaborate with federal agencies, and mentor junior engineers. Competitive Compensation & Benefits

Want to hear more? Read on to see what our Team Members say about their experience:

“Atlas Tech has the culture, trust, and fairness that you expect of the best of communities. I feel lucky to be part of their amazing journey of growth as a standout organization.” - Syed

“You are not just a number here at Atlas. I have been with Atlas for over 13 years now I can say that Atlas displays a genuine interest in its employees. This is evidenced in its commitment to mentoring every employee and providing educational paths for each employee’s personal and professional growth within the company.” - Ian

Atlas Tech is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, genetic information, or protected veteran status. We are committed to fostering an inclusive workplace where diverse perspectives are valued and respected.

Accessibility & Accommodations

Atlas Tech strives to make our website, www.atlas-tech.com, accessible to all users. If you need assistance completing the application process or require a reasonable accommodation due to a disability, please contact us at hr.recruiter@atlas-tech.com.

This contact information is designated for accommodation requests only and cannot be used to inquire about the status of an application. Atlas Tech is committed to providing reasonable accommodations in accordance with the Americans with Disabilities Act (ADA).

Atlas Tech offers a competitive salary, generous benefits package, and an opportunity to make a positive impact in your own community.