Security and Digital Identity Management Certified System Engineer – ICAM PACS (CSEIP)

Company Overview:

Over the past 15 years, eTel has delivered essential solutions for the federal government by securing and managing data, providing scalable identity access, modernizing legacy systems, and building high-performance platforms. By integrating new technologies and ensuring reliable operations we help agencies stay prepared for future challenges. As a premier technology solutions and services company to the US federal government, eTel possesses longstanding relationships across the federal civilian marketplace, with especially strong ties with Internal Revenue Service (IRS). Other customers include the broader Treasury Department, Commerce Department, and State Department.

eTel offers integrated CMMI Level 3 processes, tools, and techniques with innovative, cost-efficient, and secure solutions to address complex challenges. eTel also holds ISO 9001:2015, ISO/IEC 27001:2013, and ISO/IEC 20000-1:2018 certifications, and offers dedicated subject matter experts (SMEs) and thought leaders that possess a deep understanding of customers’ environments and challenges.

Job Summary:
Provide professional services involved in integrating solutions and helping agencies deploy and operate identity and credentialing systems related to HSPD-12/ICAM implementations. Has experience in deploying policy-compliant ICAM projects in government agencies through Special Item Numbers for ICAM or HSPD-12

Holds the Certified System Engineer ICAM PACS (CSEIP) certification for PACS and PACS integration services. It is a required credential to become an approved consultant.

Understands HSPD-12 Managed service offerings for electronic credentials (assurance levels IAL, AAL, and FAL), identity and access management, authentication, and identity and access management professional services.

Has understanding related to digital identity management and cybersecurity, based on experience in one or more critical infrastructure sectors.

Verifiable working knowledge of designing, implementing, configuring, and maintaining secure Physical Access Control Systems (PACS) and Logical Control Systems that align with federal Identity, Credential, and Access Management (ICAM) standards. This role supports government and enterprise clients in meeting FICAM-compliant requirements.

Key Skills:

1. Design and engineer FICAM-compliant PACS systems in alignment with GSA and agency-specific guidelines.
2. Install, configure, and test PACS hardware and software at secure government and enterprise facilities.
3. Isolate and troubleshoot PACS malfunctions; provide corrective actions for system errors [3].
4. Maintain documentation for system configurations, installations, and certifications.
5. Coordinate with ISSOs and project teams to ensure compliance with TRM policies and Section 508 standards.
6. Serve as a subject matter expert on ICAM policy and contribute to audits and system assessments [1].
7. Be able to define identity and access management (PIV/ICAM) project requirements.

Required Qualifications:

• Active CSEIP certification (Certified System Engineer ICAM PACS).
• Experience with E-PACS technologies and federal ICAM architecture.
• Familiarity with NIST/FIPS requirements and VA/DoD security policies.
• Ability to pass background and security clearance processes [6].
• Be able to support planning, designing, testing and delivery of PIV/ICAM solutions that meet product and ICAM/HSPD-12 specifications.

Standards and Best Practices:

• NIST 800-53 security control
• NIST 8000-63
• Federal ICAM (FICAM)
• HSPD-12
• Personal Identity Verification (PIV)
• Derived Personal Identity Verification (PIV) Credentials
• Personal Identity Verification Interoperable (PIV-I)
• Federal Public Key Infrastructure (FPKI)
• PIV applications for Physical Access Control System (PACS)
• PIV applications for Logical Access Control (LACS)
• Federal Information Security Modernization Act (FISMA)
• Federal Information Processing Standards (FIPS)
• Office of Management and Budget (OMB) standards, publications and memos.

Minimum Education:

Bachelor’s Degree and XX years of technical experience with at least X years of experience with security and identity management technical solutions. Experience in Government security and identity management standards and domain expertise.

Experience with the following: 

• VPN (Cisco AnyConnect)
• Active Directory
• IBM Security Verify (ISVA, ISVG)
• PIV and DUO MFA
• zScaler Cloud VPN
• zScaler Cloud Proxy and Remote Browser
• Palo Alto Local Network Management
• Policy Enforcement Points
• DevSecOps
• Amazon, Microsoft, Oracle, and Google cloud service provider identity system

Commitment to Diversity -
eTelligent Group provides equal employment opportunities (EEO) to all applicants without regard to race, color, religion, gender, sexual orientation, gender identity, nations origin, age, disability, genetic information, marital status, amnesty, status as a covered veteran, and any other characteristic provided in accordance with applicable, federal, state and local laws.