ICAM Site Reliability Engineer

$74,600 - $156,700/Yr

CACI International - Hampton, VA

posted 2 months ago

Full-time - Mid Level
Hampton, VA
Professional, Scientific, and Technical Services

About the position

As an ICAM Site Reliability Engineer, you will join the Kessel Run All-Domain Operations Suite (KRADOS) team, where your primary focus will be on supporting the modernization and operational sustainment of the next Air Operations Center (AOC) baseline. This role is critical as it serves as the foundational environment for executing air power objectives. You will be involved in the rapid development, production, and deployment of software across the AOC baseline, continuously iterating and improving upon these software applications. Your contributions will support the integration and development of the KRADOS suite into multiple Air Operations Centers globally, enhancing joint operations and the overall ecosystem across all services. In this position, you will provide 24/7 onsite support for operational Kessel Run Identity Management (KRIDx) and other Identity, Credential, and Access Management (ICAM) capabilities. You will be responsible for troubleshooting and resolving user account issues, performing ICAM-related deployments, upgrades, and database migrations to IL4 and IL6 environments. Additionally, you will collaborate closely with the ICAM development team to provide feedback on operational issues and coordinate deployment activities. Your role will also involve monitoring and auditing access requests, providing reachback support to the KRIDx development team, and conducting regular risk assessments to identify vulnerabilities and ensure compliance with security policies. Your work will be essential in managing and monitoring integrations with external ICAM and DoD systems, performing incident response, and ensuring the health and status of the ICAM stack. You will also be responsible for managing SSL certificates for ICAM servers and providing feedback on ICAM designs and implementations to ensure they meet functional and security requirements. This position requires a proactive approach to problem-solving and a commitment to maintaining high security and operational standards.

Responsibilities

  • Provide 24/7 onsite support for operational Kessel Run Identity Management (KRIDx) and other ICAM capability issue resolution.
  • Perform all ICAM-related deployments into IL4 and IL6 environments.
  • Collaborate with the ICAM development team to provide feedback on operational issues and coordinate deployment activities.
  • Troubleshoot and resolve user account issues.
  • Assist application teams with ICAM integration.
  • Monitor and audit access requests and user permissions.
  • Provide reachback support to the KRIDx development team for product testing, documentation, and training.
  • Monitor support requests for trends and provide recommended solutions to leadership to decrease support requests.
  • Assist with security assessment teams to ensure compliance with ICAM security standards.
  • Implement immediate workaround fix actions for issues and security vulnerabilities.
  • Conduct root cause analysis and take corrective actions following security incidents.
  • Conduct regular risk assessments to identify vulnerabilities and potential threats, and evaluate compliance with published security policy.
  • Monitor health and status of ICAM stack.
  • Coordinate ICAM updates with AOCs and manage/maintain upgrade schedule.
  • Manage and monitor integrations with external ICAM and DoD systems.
  • Perform incident response.
  • Monitor and manage SSL certificates for ICAM servers.
  • Provide feedback on ICAM designs/implementation on their ability to support functional and security requirements.

Requirements

  • 3+ years of experience in Site Reliability Engineering (SRE) or DevOps.
  • Experience with Keycloak.
  • Experience with ICAM and SSO concepts and implementations.
  • Possesses current CompTIA Security+ certification.
  • Possesses active TS/SCI clearance.
  • Experience with cloud computing concepts, architectures, and security best practices.
  • Understanding of Kubernetes container orchestration, networking concepts, and deployment strategies.
  • Experience with Microsoft Active Directory (AD) design and support.
  • Foundational knowledge with SAML, OpenID Connect (OIDC), OAuth 2.0, System for Cross Domain Identity Management (SCIM), SOAP and Rest APIs.

Benefits

  • Healthcare benefits
  • Wellness programs
  • Financial benefits
  • Retirement plans
  • Family support programs
  • Continuing education opportunities
  • Flexible time off benefits

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service