Authentication Jobs in Virginia (NOW HIRING)

Job Title: ICAM Architect
Location: Hybrid – McLean, VA
Job Type: Direct Hire
Compensation: $86,800–$198,000 annually
Clearance Requirement: Secret preferred/ability to obtain may be required *This position is located in an area that requires special access. US citizenship required. Company: The name of our partner organization will be disclosed during the interview
process. This is not a direct role with LaunchCode; it is a position through LaunchCode,
working with one of our partner companies. Disclaimer: We are unable to provide work sponsorship for this role. We are unable to
consider candidates for this role who have a current or future work sponsorship need (this
includes those holding extended OPT Visas). Identity is at the center of modern cybersecurity—and we’re looking for an experienced
ICAM Architect to help design and strengthen enterprise identity environments supporting
mission-critical initiatives. This role is ideal for someone who enjoys solving complex identity and access challenges,
partnering with stakeholders, and building scalable enterprise authentication and access
solutions. You’ll play a key role in Identity, Credential, and Access Management (ICAM)
strategy with a strong focus on Identity and Access Management (IAM), federation, zero
trust, and enterprise identity lifecycle management. From single sign-on and federation to privileged access and passwordless authentication,
this is an opportunity to architect secure, enterprise-grade identity solutions that protect
critical systems while improving the user experience. You’ll work closely with engineering
teams and business stakeholders to understand access requirements, define identity
architecture, and implement solutions that enable secure access across complex
enterprise environments. Key Responsibilities • Architect and support enterprise ICAM and IAM solutions across large-scale environments • Design and implement secure identity and access management solutions aligned with zero trust principles • Partner with stakeholders and engineering teams to understand user roles, access requirements, and system dependencies • Analyze and support the identity lifecycle including provisioning, authentication, access governance, and deprovisioning • Design, deploy, and support identity systems that verify user privileges and secure access to enterprise applications and infrastructure • Configure and support single sign-on (SSO), federation, multifactor authentication (MFA), and passwordless authentication capabilities • Develop and troubleshoot custom integrations using SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC) • Support identity provider integrations with enterprise applications using REST APIs and automation workflows • Integrate and synchronize identity platforms with Active Directory and LDAP environments • Troubleshoot complex identity and federation issues including token validation, assertion mismatches, and connectivity issues • Support identity automation and platform customization using scripting and development tools • Contribute to identity architecture standards, documentation, and security best practices across the enterprise Required Qualifications • Experience with Okta or Microsoft Entra ID and certificate-based authentication • Experience with SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC) • Experience developing custom SAML, OAuth, and OIDC integrations and troubleshooting protocol exchanges • Experience with development or automation languages such as Java, JavaScript, Python, PowerShell, or Groovy • Experience integrating identity providers with external applications using RESTful APIs • Experience integrating and synchronizing with Active Directory (AD) or LDAP environments • Knowledge of Zero Trust architecture and experience implementing passwordless authentication or MFA • Ability to resolve complex identity and federation issues in enterprise environments • Strong understanding of IAM and enterprise authentication best practices • High school diploma or GED required Preferred Qualifications • Experience with Okta Provisioning, Entra ID, Entra ID Connect, and Workday integrations • Experience with identity governance platforms such as Saviynt, SailPoint, Omada, or Oracle IAM • Experience building or enhancing automated user lifecycle management using SCIM protocols • Experience integrating identity provider configurations into DevOps or CI/CD workflows • Knowledge of advanced Okta features including Okta Workflows, Custom Authorization Servers, Inline Hooks, and Okta APIs • Knowledge of compliance and regulatory frameworks such as NIST, FedRAMP, and CMMC • Experience with cloud identity platforms such as Amazon Web Services Cognito, Azure AD B2C, Keycloak, or Google Cloud Identity • Excellent verbal and written communication skills • Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field • Active Secret clearance or ability to obtain strongly preferred Why This Opportunity • Opportunity to architect enterprise-scale identity and access solutions supporting mission-critical environments • Work hands-on with modern IAM, federation, and zero trust technologies • Help shape identity strategy across complex enterprise systems • Exposure to advanced automation, cloud identity, and compliance-driven security initiatives • High-impact role with visibility across cybersecurity and infrastructure teams • Long-term growth opportunity within enterprise cybersecurity architecture