ICAM Test Engineer

Koniag Services, Inc.
7 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Tech stack

Agile Methodologies
Amazon Web Services (AWS)
Software System Penetration Testing
Automation of Tests
Azure
Bash
Burp Suite
Cloud Computing Security
CompTIA Security+
Computer Security
Multi-Factor Authentication
Identity and Access Management
Python
NMap
Public Key Infrastructure
Powershell
Scrum
Systems Development Life Cycle
Release Management
Comptia Pentest+ CE
Security Information and Event Management
Single Sign-On
Software Engineering
Systems Integration
Scripting (Bash/Python/Go/Ruby)
SC Clearance
Information Technology
Metasploit
Devsecops
Vulnerability Analysis

Job description

The ICAM Test Engineer will play a critical role in ensuring the security and integrity of Identity, Credential, and Access Management (ICAM) systems by proactively identifying vulnerabilities prior to release and supporting ongoing security operations. The ICAM Test Engineer will work closely with development, integration, and security teams to assess risks, simulate adversarial attack scenarios, and provide actionable remediation guidance.

Principal responsibilities will include, but are not limited to:

  • Proactively test new enhancements, features, and system integrations for security vulnerabilities prior to production release.
  • Plan, conduct, and document authorized penetration tests and simulated cyberattacks against ICAM systems and related infrastructure to identify exploitable vulnerabilities.
  • Analyze and prioritize identified vulnerabilities, providing detailed findings and remediation recommendations to development and engineering teams.
  • Manage and maintain security tooling used for vulnerability scanning, penetration testing, and monitoring activities.
  • Monitor system logs and security event data to detect anomalous behavior, potential threats, or indicators of compromise.
  • Support incident response activities, including investigation, containment, eradication, and post-incident analysis.
  • Collaborate with cross-functional teams including developers, architects, and system administrators to integrate security best practices throughout the software development lifecycle (SDLC).
  • Develop and maintain test plans, test cases, and supporting documentation for security testing activities.
  • Provide written reports and briefings summarizing security assessment findings, risk posture, and recommended mitigations.
  • Stay current with emerging threats, attack techniques, and industry best practices relevant to ICAM environments.

Requirements

Koniag IT Systems (KITS), a Koniag Government Services company, is seeking an experienced ICAM Test Engineer to support our cybersecurity and identity management initiatives. The ideal candidate is a detail-oriented security professional with a passion for proactive vulnerability identification and a commitment to safeguarding critical systems and infrastructure. The successful candidate will bring hands-on experience in penetration testing, security tooling, and incident response within complex IT environments. This position requires an active Secret Clearance. This position is Remote., * Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field from an accredited college or university.

  • 3+ years of experience in cybersecurity, security testing, penetration testing, or a related discipline.
  • Active Secret Clearance., * Demonstrated experience conducting authorized penetration testing and vulnerability assessments against enterprise systems and applications.
  • Proficiency in managing and operating security tools such as vulnerability scanners, SIEM platforms, and penetration testing frameworks (e.g., Metasploit, Burp Suite, Nmap, or similar).
  • Experience analyzing and triaging vulnerability findings, including CVSS scoring and risk prioritization.
  • Ability to monitor, review, and interpret system and security logs to identify potential threats or security incidents.
  • Experience supporting incident response activities including detection, investigation, and remediation.
  • Solid understanding of Identity, Credential, and Access Management (ICAM) concepts, frameworks, and technologies.
  • Strong understanding of common attack vectors, threat modeling, and adversarial tactics, techniques, and procedures (TTPs).
  • Ability to produce clear and concise written security assessment reports, test plans, and technical documentation.
  • Exceptional communication skills in English - both written and oral - with the ability to convey technical findings to both technical and non-technical stakeholders.
  • Ability to work independently and collaboratively within a cross-functional team environment.
  • Active Secret Clearance.

Desired Skills and Competencies:

  • Experience working within a federal government IT environment.
  • Relevant industry certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), CompTIA PenTest+, CompTIA Security+, or CISSP.
  • Familiarity with NIST Special Publications (e.g., NIST SP 800-53, NIST SP 800-63) and federal security frameworks.
  • Experience with ICAM technologies including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Public Key Infrastructure (PKI), and Privileged Access Management (PAM).
  • Knowledge of cloud security concepts and experience testing cloud-hosted environments (AWS, Azure, or GCP).
  • Familiarity with DevSecOps practices and integrating security testing into CI/CD pipelines.
  • Experience with scripting languages such as Python, Bash, or PowerShell to support automated testing and security operations.
  • Familiarity with Agile Development Methodology, especially Scrum.

Benefits & conditions

We offer competitive compensation and an extraordinary benefits package including health, dental, and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

About the company

Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com. Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352

Apply for this position