ICAM Test Engineer

 Posted an hour ago
  
 Worldwide
  
2-5 years experience
Apply Now

Please mention DailyRemote when applying

AI Summary

The ICAM Test Engineer is responsible for proactively identifying security vulnerabilities in Identity, Credential, and Access Management systems through penetration testing and simulated attacks. They will collaborate with cross-functional teams to provide remediation guidance and support incident response activities.

Koniag IT Systems (KITS), a Koniag Government Services company, is seeking an experienced ICAM Test Engineer to support our cybersecurity and identity management initiatives. The ideal candidate is a detail-oriented security professional with a passion for proactive vulnerability identification and a commitment to safeguarding critical systems and infrastructure. The successful candidate will bring hands-on experience in penetration testing, security tooling, and incident response within complex IT environments. This position requires an active Secret Clearance. This position is Remote. 

 

We offer competitive compensation and an extraordinary benefits package including health, dental, and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

 

The ICAM Test Engineer will play a critical role in ensuring the security and integrity of Identity, Credential, and Access Management (ICAM) systems by proactively identifying vulnerabilities prior to release and supporting ongoing security operations. The ICAM Test Engineer will work closely with development, integration, and security teams to assess risks, simulate adversarial attack scenarios, and provide actionable remediation guidance.

 

Principal responsibilities will include, but are not limited to:

  • Proactively test new enhancements, features, and system integrations for security vulnerabilities prior to production release.
  • Plan, conduct, and document authorized penetration tests and simulated cyberattacks against ICAM systems and related infrastructure to identify exploitable vulnerabilities.
  • Analyze and prioritize identified vulnerabilities, providing detailed findings and remediation recommendations to development and engineering teams.
  • Manage and maintain security tooling used for vulnerability scanning, penetration testing, and monitoring activities.
  • Monitor system logs and security event data to detect anomalous behavior, potential threats, or indicators of compromise.
  • Support incident response activities, including investigation, containment, eradication, and post-incident analysis.
  • Collaborate with cross-functional teams including developers, architects, and system administrators to integrate security best practices throughout the software development lifecycle (SDLC).
  • Develop and maintain test plans, test cases, and supporting documentation for security testing activities.
  • Provide written reports and briefings summarizing security assessment findings, risk posture, and recommended mitigations.
  • Stay current with emerging threats, attack techniques, and industry best practices relevant to ICAM environments.

 

Education and Experience:

Required:

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field from an accredited college or university.
  • 3+ years of experience in cybersecurity, security testing, penetration testing, or a related discipline.
  • Active Secret Clearance.

 

Required Skills and Competencies:

  • Demonstrated experience conducting authorized penetration testing and vulnerability assessments against enterprise systems and applications.
  • Proficiency in managing and operating security tools such as vulnerability scanners, SIEM platforms, and penetration testing frameworks (e.g., Metasploit, Burp Suite, Nmap, or similar).
  • Experience analyzing and triaging vulnerability findings, including CVSS scoring and risk prioritization.
  • Ability to monitor, review, and interpret system and security logs to identify potential threats or security incidents.
  • Experience supporting incident response activities including detection, investigation, and remediation.
  • Solid understanding of Identity, Credential, and Access Management (ICAM) concepts, frameworks, and technologies.
  • Strong understanding of common attack vectors, threat modeling, and adversarial tactics, techniques, and procedures (TTPs).
  • Ability to produce clear and concise written security assessment reports, test plans, and technical documentation.
  • Exceptional communication skills in English — both written and oral — with the ability to convey technical findings to both technical and non-technical stakeholders.
  • Ability to work independently and collaboratively within a cross-functional team environment.
  • Active Secret Clearance.

 

Desired Skills and Competencies:

  • Experience working within a federal government IT environment.
  • Relevant industry certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), CompTIA PenTest+, CompTIA Security+, or CISSP.
  • Familiarity with NIST Special Publications (e.g., NIST SP 800-53, NIST SP 800-63) and federal security frameworks.
  • Experience with ICAM technologies including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Public Key Infrastructure (PKI), and Privileged Access Management (PAM).
  • Knowledge of cloud security concepts and experience testing cloud-hosted environments (AWS, Azure, or GCP).
  • Familiarity with DevSecOps practices and integrating security testing into CI/CD pipelines.
  • Experience with scripting languages such as Python, Bash, or PowerShell to support automated testing and security operations.
  • Familiarity with Agile Development Methodology, especially Scrum.

 

Our Equal Employment Opportunity Policy

The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment.

 

The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations.

 

Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com.

 

Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352

 

Similar Jobs

See all Remote Software Development jobs →

Personalize your Remote Job Search in 3 Easy Steps!

Discover remote opportunities in Software Development

Answer easy questions

Answer easy questions

200,000+ jobs across 15+ categories

Get your best job matches

Get your best job matches

Only hand-screened, legit jobs

Find a remote job faster

Find a remote job faster

No ads, scams, or junk

I was the first applicant for a remote marketing position that got listed on the company website the same day I applied. Had an interview within 48 hours!

Sarah J. — Sarah J. · Marketing Manager ★★★★★ Verified