Role Description
Koniag IT Systems, LLC, a Koniag Government Services company, is seeking a Lead Platform Architect with a Secret Security clearance to support KITS and our government customer. The position is remote.
The ideal candidate is a visionary and technically authoritative professional with deep expertise in designing and implementing enterprise-scale ICAM architectures leveraging Okta and SailPoint platforms within a federal environment. This individual will serve as the primary technical authority for ICAM platform architecture, driving the strategic design, modernization, and integration of identity and access management solutions that align with Zero Trust principles, federal security standards, and mission objectives.
The ICAM Lead Platform Architect will serve as the senior technical leader responsible for the end-to-end architecture, design, and strategic direction of ICAM platforms and solutions built on Okta and SailPoint within a federal government environment. This individual will provide authoritative technical guidance across all aspects of the ICAM platform lifecycle, from solution architecture and platform engineering through integration, optimization, and modernization.
Principal responsibilities will include but are not limited to:
-
Serve as the primary technical authority and lead architect for enterprise ICAM platforms, providing strategic direction and hands-on architectural guidance for Okta and SailPoint implementations in a federal government environment.
-
Design and develop comprehensive ICAM architecture solutions, including reference architectures, solution design documents, architecture decision records (ADRs), and integration blueprints that align with federal standards, Zero Trust principles, and mission requirements.
-
Lead the architectural design and implementation of Okta platform capabilities, including SSO, MFA, Adaptive Authentication, Universal Directory, Lifecycle Management, API Access Management, and Okta Workflows.
-
Lead the architectural design and implementation of SailPoint Identity Governance solutions, including identity lifecycle management, role-based access control (RBAC), access certifications, separation of duties (SoD) policies, and automated provisioning and deprovisioning workflows.
-
Develop and maintain the overarching ICAM platform roadmap, identifying opportunities for modernization, capability enhancement, and alignment with emerging identity security technologies and federal mandates.
-
Architect and oversee the integration of Okta and SailPoint platforms with enterprise systems, applications, directories, and cloud services, leveraging federation protocols, APIs, and connector frameworks.
-
Provide technical leadership and mentorship to ICAM engineers, administrators, and support staff, guiding the team in best practices, architectural patterns, and platform-specific implementation standards.
-
Collaborate with information system security managers (ISSMs), security architects, and government stakeholders to ensure ICAM architectures meet federal security requirements, including NIST SP 800-53 controls, FICAM guidelines, and Zero Trust Architecture mandates.
-
Lead technical design reviews, architecture review boards (ARBs), and platform governance activities to ensure consistency, quality, and alignment of ICAM solutions across the program.
-
Evaluate and recommend emerging ICAM technologies, tools, and platforms, providing informed assessments of their suitability for adoption within the federal ICAM ecosystem.
-
Develop and maintain authoritative technical documentation, including architecture diagrams, data flow diagrams, interface control documents (ICDs), and platform configuration standards.
-
Support the ATO process by providing architectural expertise and contributing to security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Risk Assessment Reports (RARs).
-
Collaborate with cloud architects and DevSecOps teams to ensure ICAM platform architectures are optimized for cloud environments and integrated into CI/CD pipelines.
-
Lead troubleshooting and resolution of complex, high-impact technical issues within Okta and SailPoint environments, providing expert guidance to engineering teams.
-
Engage directly with government stakeholders and senior leadership to communicate ICAM architectural strategies, roadmaps, and technical recommendations through briefings and presentations.
-
Drive the adoption of automation, AI-driven capabilities, and intelligent workflows within ICAM platforms to enhance operational efficiency and security outcomes.
Qualifications
-
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Systems Engineering, or a related field from an accredited college or university; equivalent work experience may be considered in lieu of a degree.
-
8+ years of experience in identity and access management, with progressive technical responsibility culminating in an architectural or senior engineering leadership role.
-
5+ years of hands-on experience designing, implementing, and managing enterprise-scale Okta and/or SailPoint solutions.
-
Demonstrated experience architecting ICAM solutions in a federal government environment.
Requirements
-
Active Secret Clearance required.
-
Exceptional communication skills in English – both written and oral – with the ability to articulate complex architectural concepts and technical strategies clearly to both technical teams and senior non-technical government stakeholders.
-
Deep, hands-on expertise with the Okta platform, including SSO, MFA, Adaptive Authentication, Universal Directory, Lifecycle Management, Okta Workflows, API Access Management, and Okta Identity Engine (OIE).
-
Deep, hands-on expertise with SailPoint IdentityIQ (IIQ) and/or SailPoint Identity Security Cloud (ISC), including identity lifecycle management, access certifications, role management, SoD policy enforcement, and automated provisioning workflows.
-
Demonstrated experience designing and implementing enterprise-scale ICAM architectures that integrate Okta and SailPoint with complex, heterogeneous IT environments including on-premises, hybrid, and cloud infrastructures.
-
Expert-level knowledge of identity federation protocols and standards, including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM, and LDAP, and their architectural application within enterprise ICAM solutions.
-
Strong understanding of Zero Trust Architecture principles and their practical application to ICAM platform design and implementation within a federal environment.
-
Comprehensive knowledge of federal ICAM frameworks and identity management standards, including FICAM, NIST SP 800-63, NIST SP 800-53, and relevant OMB policies and mandates.
-
Experience leading architecture review boards, technical design reviews, and platform governance processes.
-
Proven ability to develop comprehensive technical documentation, including reference architectures, solution design documents, architecture decision records, and integration blueprints.
-
Experience integrating ICAM platforms with enterprise applications, cloud services, and legacy systems via REST APIs, SCIM, SOAP, and native connectors.
-
Strong knowledge of Active Directory (AD), Azure Active Directory (AAD/Entra ID), and LDAP directory services and their integration with Okta and SailPoint.
-
Experience supporting ATO processes and contributing to federal security documentation, including SSPs, SARs, RARs, and POA&Ms.
-
Demonstrated ability to provide technical mentorship and leadership to engineering teams in a federal IT environment.
-
Strong analytical and problem-solving skills, with the ability to resolve complex, high-impact technical challenges across enterprise ICAM environments.
Benefits
-
Competitive compensation.
-
Extraordinary benefits package including health, dental and vision insurance.
-
401K with company matching.
-
Flexible spending accounts.
-
Paid holidays.
-
Three weeks paid time off.
-
And more.