Enterprise Architect ICAM

GDIT is partnering with the Department of Veterans Affairs (VA) to modernize and secure the enterprise Identity, Credential, and Access Management (ICAM) services that support millions of Veterans nationwide. As an Enterprise ICAM Architect, you will serve as a senior technical leader and subject matter expert responsible for developing the architectural strategy, design, governance, and implementation approach for large-scale identity and access modernization initiatives.

You will guide enterprise transformation efforts that advance Zero Trust alignment, strengthen VA's digital identity ecosystem, and ensure secure, resilient, and compliant access across the VA landscape. This role is mission-critical and spans architecture, engineering, governance, technical leadership, and collaboration across federal and commercial environments.

HOW AN ENTERPRISE ARCHITECT WILL MAKE AN IMPACT:

• Lead enterprise-level ICAM architecture strategy, roadmaps, and technical governance for VA's identity modernization initiatives.
• Serve as the primary ICAM architecture SME supporting Zero Trust principles, security strategy, and enterprise identity modernization.
• Design and oversee large-scale ICAM implementations across identity governance, authentication, authorization, lifecycle management, and privileged access.
• Develop enterprise ICAM architecture frameworks aligned with FICAM, NIST, and federal cybersecurity requirements.
• Lead the design and implementation of Access Certifications, RBAC models, identity lifecycle workflows, and customer-focused IAM solutions.
• Architect and support application onboarding/offboarding, SSOi and SSOe integrations, and multi-system federation approaches.
• Provide enterprise guidance on Identity Governance and Administration (IGA) capabilities and tools.
• Support identity integrations with Electronic Health Record (EHR) systems and healthcare-focused IAM requirements.
• Collaborate with federal partners, enterprise stakeholders, and organizations such as DOW to architect federated identity solutions for diverse user populations.
• Provide expert recommendations on ICAM modernization, emerging technologies, and security architecture patterns.
• Ensure alignment with federal ICAM mandates including OMB M-19-17, NIST 800-63, EO 14028, and OMB M-22-09.
• Participate in technical reviews, solution assessments, and enterprise-level engineering discussions to drive secure and scalable identity capabilities.

• Ability to obtain a Public Trust clearance.

• Education: Bachelor's degree in Computer Science, Engineering, Information Systems, or a related discipline

*10+ years of experience designing and leading ICAM architectures for complex enterprise environments in the federal and commercial sectors.

• Expertise across IAM design, implementation, deployment, operations, and lifecycle management.
• Strong background in security architecture, security strategy, regulatory compliance, and enterprise security engineering.
• Experience implementing Access Certifications, RBAC, identity lifecycle management, and governance-driven IAM features.
• Strong understanding of application onboarding/offboarding workflows, SSOi/SSOe architectures, and federated identity integrations.
• Expertise with Identity Governance and Administration (IGA) solutions.
• Experience supporting identity architectures for Electronic Health Record (EHR) systems.
• Ability to work across an enterprise to develop federated identity architectures with external organizations and diverse user communities.
• Deep familiarity with federal ICAM standards, mandates, and requirements.

Certifications (one or more required):

• Certified Information Systems Security Professional (CISSP)

• Certified Information Security Manager (CISM)

• Certified Ethical Hacker (CEH)

• Certified Information Systems Auditor (CISA)

• Global Information Assurance Certification (GIAC)

Security Clearance: Must be able to obtain a Public Trust, 10 + years of related experience

• may vary based on technical training, certification(s), or degree Certification

GIAC Continuous Monitoring Certification (GMON) | Global Information Assurance Certification (GIAC) - Global Information Assurance Certification (GIAC)

Certified Information Systems Auditor (CISA) | Information Systems Audit and Control Association (ISACA) - Information Systems Audit and Control Association (ISACA)

Certified Information Systems Security Professional (CISSP) | International Information System Security Certification Consortium (ISC2) - International Information System Security Certification Consortium (ISC2)

Certified Ethical Hacker (CEH) | EC-Council - EC-Council

Certified Information Security Manager (CISM) | Information Systems Audit and Control Association (ISACA) - Information Systems Audit and Control Association (ISACA) Travel Required

The likely salary range for this position is $142,792 - $191,719. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

We are GDIT. A global technology and professional services company that delivers technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across over 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, cloud, cyber and application development. Together with our customers, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.