This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

We are seeking an Identity System Integration Engineer to deliver outstanding Federal Identity, Credential, and Access Management (FICAM) policy, implementation, and operational services.

• The Federal Government's smart cards are the output of a dozen or more systems, some on-prem and some cloud-based, working in conjunction at very high levels of security.
• HSPD-12 credentials are the first line of cyber defense within the Federal Government.
• Involves nearly 1,000 Workstations leveraging a mixture of thin and thick clients, some manned and some kiosk-based, connected over varying levels of bandwidth.
• Credential issuance systems are complex and will test every bit of your IT systems background.
• Tasks may include looking at IIS servers, SQL queries, client workstation configurations, on-prem hardware devices, and integrating APIs to client applications.

• Have experience in deploying, configuring, operating, and maintaining Identity Management and Credential Management systems on-prem and in Microsoft Azure environments.
• Have an in-depth understanding of Smart card supported credential management system installation, configuration, and deployment methods, including scripting, use of APIs, orchestration, automation, and database services.
• Assist technical support related to presales and business development activities with focus on IDEMIA Smart Credentials, smartcard, and USB authenticator products and solutions.
• Understand requirements by meeting with customers and presenting technical information/solutions to customers supporting the sales organization.
• Collaborate with architects and developers to support API integrations into multi-platform environments.
• Troubleshoot and document broad-ranging issues (operating systems, network, firewall, COTS products, access, and authentication).
• Define integration and test strategy, test plan, and test scenarios.
• Ensure requirements traceability and coverage.
• Build the integration environment and install or upgrade the solution.
• Perform system integration and validation tests including load, performance, high availability, accuracy, and security tests.
• Investigate issues by analyzing logs during test execution, report incidents, and monitor them until closure.
• Produce documents that will allow proper installation, testing, operations, and administration.
• Prepare and provide training for customers, support, and maintenance teams.
• Support pre-sales teams on specific technical requests on integration activities.

Qualifications

• Ability to work in the USA.
• A bachelor's degree in computer science or a related technical discipline or the equivalent combination of education, technical certifications or training, and work experience.
• 3+ years of total experience in the security industry, experience in configuring, integrating, and testing multi-tier information systems.
• Preferred experience in Physical Access Control System (PACS) technologies (Prox, DESFire) and how cards are issued and used within these environments.
• Experience working on federal and/or commercial client engagements.
• Hands-on experience integrating, troubleshooting, deploying, and maintaining Identity Management Systems, Credential Management Systems, or other large-scale systems.
• Proven skills in the following:
• API Frameworks (WSDL, SOAP, REST, XML) and proficiently using Swagger or other API design tools.
• Performing software integration activities in an agile and smart card embedded environment.
• Desired skills:
• Strong customer-facing interpersonal communication skills supporting customer integrations and attending pre-sales discussions supporting the business development team.
• Hands-on experience integrating, troubleshooting, deploying, and maintaining an enterprise credentialing platform such as MyID or ActivID and its associated peripherals (smart card readers, biometric capture devices).
• Experience with PIVPack, PIV SDK, FIDO SDK, and/or Open-Source Tools like OpenSC.
• A strong understanding of Public Key Infrastructure (PKI), PIV credentialing (FIPS 201-3/NIST SP-800-73-4), and Public Key Enablement (PKE).
• Full understanding of the revocation model and capabilities available within PKI to include Certificate Revocation List (CRL)s and Online Certificate Status Protocol (OCSP).
• IT Security Certification (e.g., CISSP, CSEIP, CSCIP/G).

Requirements

• The US base salary range for this position is $93,440.00 - $116,813.00 + bonus + benefits.
• Our salary ranges are determined by role and level.
• The range displayed on each job posting reflects the compensation target for the role across all US locations.
• Individual pay is determined by job-related skills, experience, and relevant education or training.
• Beyond offering a competitive total rewards package, we offer various opportunities to support team member growth and success.