Senior ICAM Federation and App Integration Engineer

Leidos Holdings Inc

MD

JOB DETAILS
SALARY
$131,300–$237,350 Per Year
SKILLS
Agile Programming Methodologies, Amazon Web Services (AWS), Analysis Skills, Application Integration, Application Programming Interface (API), Applications Security, Authentication, Automation, Business Operations, CISSP - Certified Information Systems Security Professional, Cloud Computing, Commercial Off-the-Shelf (COTS), Communication Skills, Computer Certifications, Continuous Deployment/Delivery, Continuous Integration, DoD Secret Clearance, Enterprise Application Integration (EAI), F5 Network Software, Financial Management, Identity Data Management, Identity Federation, Intelligence Community, Leadership, Legal, Maintain Compliance, Mentoring, Microsoft Product Family, Onboarding, Operations Planning, Presentation/Verbal Skills, Procedure Development, Product Demonstration, Risk, Risk Analysis, Security Policy, Single Sign-On (SSO), Software Engineering, Software as a Service (SaaS), Technical Leadership, Technical Presentation, Technical/Engineering Design, Test Plan/Schedule, Testing, U.S. National Institute of Standards and Technology (NIST), United States Department of Defense (DoD), Writing Skills
LOCATION
MD
POSTED
17 days ago

Serves as a senior technical engineer for ICAM federation, application onboarding, authentication, authorization, and integration services; designing, configuring, integrating, testing, and sustaining enterprise identity provider, single sign-on, multifactor authentication, claims, token, and API-based access management capabilities across DoD enterprise, cloud, mission, and legacy applications; supporting Zero Trust and FICAM-aligned ICAM services; and ensuring compliance with DoD, NIST, and Intelligence Community standards and frameworks.

Primary Responsibilities

  • Work with senior leadership, customers, application owners, security teams, mission partners, and operations teams to plan and execute ICAM federation and application onboarding activities using Agile methodologies.

  • Integrate Okta, Ping Federate, Radiant Logic, Microsoft Entra ID, Keycloak, ForgeRock, SailPoint, Delinea, HashiCorp, and related ICAM platforms with enterprise and mission applications.

  • Assess current application authentication and access management architectures; analyze alternatives and implement federation and onboarding solutions that accelerate integration with enterprise ICAM services.

  • Develop and present federation designs, claims mappings, integration artifacts, test plans, technical briefings, and application onboarding demonstrations.

  • Evaluate emerging federation and authentication technologies and guide engineering teams in implementing scalable, secure, and mission-aligned SSO, MFA, API integration, and application onboarding solutions.

  • Develop service design procedures and technical recommendations for application integration, claims release, federation protocols, MFA, API security, deployment automation, and operational handoff.

  • Ensure engineering teams deliver effective SSO, federation, MFA, API integration, and onboarding capabilities supporting enterprise mission objectives.

  • Support integration of enterprise identity providers and access management services across cloud, mission, and hybrid application environments.

  • Provide technical status updates and implementation risk assessments to internal and external stakeholders.

  • Serve as a technical lead for federation, identity provider, and application onboarding activities while mentoring junior engineers.

  • Prepare and present architecture diagrams, implementation plans, technical demonstrations, and integration briefings.

  • Recognized as a trusted technical leader for ICAM federation, single sign-on, multifactor authentication, and enterprise application integration.

Required Qualifications

  • Active DoD Secret Clearance or higher.

  • Typically requires BS degree and 12+ years relevant experience. Additional experience may be considered in lieu of degree.

  • Experience with IdAM / ICAM delivery systems, enterprise identity providers, SSO, authentication and authorization services, federated identity management, claims engineering, access management APIs, entitlement management, and digital policy management.

  • Experience with security accreditation processes and identity-related security control implementation.

  • Experience supporting cloud-hosted identity services, enterprise application integration, and AWS or comparable cloud environments.

  • Experience with SAML 2.0, OIDC, OAuth 2.0, FIDO2/WebAuthn, CAC/PIV, PKI, MFA, step-up authentication, and token-based access control concepts.

  • Understanding of context-aware access, RBAC, ABAC, device posture, network context, and risk-based authentication principles.

  • Experience integrating enterprise applications using federation protocols, APIs, claims transformation, and identity provider technologies.

  • Excellent oral and written communication skills.

Required Certification(s):

  • One or more DoD 8140.01 Level III Certifications

  • Active Computing Environmental certification (CE) in job-related duties such as Okta, Ping Identity, Microsoft Entra ID, F5, Keycloak, or related ICAM platform certification

Desired Qualifications:

  • Minimum of one identity provider, federation, cloud, or security certification such as Okta, Ping Identity, Microsoft Entra ID, AWS Associate, CISSP, or equivalent

  • 5+ years of Commercial Cloud Services (C2S), DoD cloud, or classified mission environment experience

  • Experience integrating legacy, COTS, SaaS, cloud-native, financial management, and custom applications with enterprise ICAM services

  • Experience designing and implementing configurable MFA, step-up authentication, non-CAC authentication, self-service, and mission partner access patterns

  • Experience with API security, policy enforcement points, claims transformation, token exchange, secrets management, and certificate lifecycle considerations

  • Managing complex Sponsor relationships and requirements gathering across enterprise, component, application owner, and operations communities

  • Experience migrating applications from local authentication or legacy SSO to enterprise identity provider and federation services

  • Injecting detailed technical direction into teams for adoption of federation, application onboarding, CI/CD, and operational integration practices

  • TS/SCI eligible

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.

Original Posting:

May 22, 2026

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $131,300.00 - $237,350.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About the Company

L

Leidos Holdings Inc

SAIC is a premier Fortune 500® technology integrator driving our nation's digital transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, IT modernization, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers' missions. We are a team of 26,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.1 billion. For more information, visit saic.com.
COMPANY SIZE
10,000 employees or more
INDUSTRY
Computer/IT Services
FOUNDED
2013
WEBSITE
https://jobs.saic.com/