Enterprise IDAM Product Manager
Leidos, Tewksbury, MA, United States
Description
Leidos has an opening for a Product Manager supporting Enterprise Identity, Credential, and Access Management (IDAM) within the U.S. Air Force Cloud One Architecture & Common Shared Services (ACSS) program. Under Cloud One ACSS, the Leidos team delivers enterprise cloud architecture, foundational shared services, and secure platform capabilities enabling mission systems across multi-cloud and hybrid environments. The
Enterprise IDAM Product Manager
will define and manage identity services that span AWS, Azure, GCP, OCI, and hybrid/on-premises environments. This role ensures identity architecture aligns with DoD Zero Trust strategy, supports IL2–IL6, and enables secure, seamless access to mission systems across classified and unclassified domains. You will work closely with cybersecurity architects, cloud platform engineers, network teams, and government stakeholders to implement enterprise-grade identity federation, privileged access management, role-based access control, and continuous monitoring solutions that form the foundation of Zero Trust architecture. Ideal candidates will have the ability to travel to the Tewksbury, MA area as needed. Primary Responsibilities
Enterprise Identity Strategy & Roadmap. Maintain the product vision and roadmap for cross-cloud IDAM services within Cloud One ACSS. Align identity services with DoD Zero Trust Architecture and DoD Identity Strategy. Enable standardized identity patterns for multi-cloud and hybrid environments. Ensure interoperability across AWS IAM, Azure Entra ID, GCP IAM, OCI IAM, and on-prem Active Directory. Identity Federation & Access Governance (lead lifecycle management of enterprise identity services including SSO, MFA, RBAC, ABAC, PAM). Enable federation using SAML, OAuth 2.0, OpenID Connect, and cross-domain identity brokers. Support centralized identity governance and lifecycle management. Define policies for least privilege access and just-in-time elevation. Zero Trust & Continuous Verification
Support implementation of Zero Trust principles including identity-centric access controls. Integrate conditional access policies and risk-based authentication. Enable device trust and identity verification mechanisms. Ensure identity telemetry feeds into enterprise security monitoring and SIEM platforms. Compliance, RMF & Security Integration
Ensure identity services comply with RMF, FedRAMP High, DoD SRG, DISA STIGs, and NIST 800-53 controls. Support identity components required for IL2–IL6 environments. Partner with cybersecurity teams to maintain ATO posture and continuous monitoring compliance. Develop audit logging and identity monitoring frameworks. Hybrid & Cross-Domain Integration
Enable identity synchronization between cloud and on-prem environments. Support integration with DoD PKI and CAC authentication. Facilitate cross-domain identity solutions where applicable. Ensure compatibility with classified and mission partner environments. Stakeholder Engagement & Governance
Serve as primary liaison between government leadership, cybersecurity stakeholders, and cloud platform teams for IDAM capabilities. Translate mission requirements into prioritized identity services and backlog features. Conduct executive briefings on identity risk posture, compliance status, and roadmap evolution. Participate in architecture review boards and Integrated Product Teams (IPTs). Documentation & Enterprise Communication
Develop and maintain identity reference architectures, access governance policies, federation implementation guides, and compliance artifacts. Publish enterprise identity standards and integration patterns. Maintain transparency on service maturity and security posture. Basic Qualifications
Bachelor’s degree and 8+ years of experience in identity management, cybersecurity, enterprise IT or a Master with 10+ years of applicable experience. 3+ years of experience in product management. Active DoD Secret clearance required; Top Secret preferred. DoD 8570.01 IAT Level II certification required prior to onboarding. 3+ years of experience implementing enterprise IDAM solutions. Experience supporting identity services in multi-cloud and hybrid environments. Strong Understanding
SAML, OAuth 2.0, OpenID Connect. RBAC and ABAC models. Federation and cross-account identity models. Privileged Access Management. CAC/PKI authentication integration. Experience supporting RMF and IL4/IL5 ATO processes. Experience operating in Agile and DevSecOps environments. Strong executive-level communication skills. Required Certifications
CISSP or equivalent. CIAM or similar credential. CSPO or equivalent. SAFe Product Owner/Product Manager or Agile certification. Preferred Certifications: Microsoft Identity and Access Administrator Associate, AWS Security Specialty, Google Cloud Professional Security Engineer, Oracle OCI Security Professional, CISM, ITIL v4, PMP. Preferred Experience
Experience supporting Cloud One or DoD Enterprise Cloud programs. Experience implementing Zero Trust in regulated environments. Experience with enterprise IAM tools (Okta, Ping, SailPoint, CyberArk or similar). Experience integrating identity telemetry into SIEM or SOAR. Experience supporting cross-domain or classified identity environments. Strategic thinker with Zero Trust understanding; strong collaboration across cybersecurity, networking, and cloud engineering teams. Risk-aware decision maker focused on secure-by-design identity architecture. Comfortable operating in high-visibility, mission-critical DoD programs. Note: This description excludes non-essential boilerplate and disallowed formatting such as
font
tags and extraneous HTML.
#J-18808-Ljbffr
Leidos has an opening for a Product Manager supporting Enterprise Identity, Credential, and Access Management (IDAM) within the U.S. Air Force Cloud One Architecture & Common Shared Services (ACSS) program. Under Cloud One ACSS, the Leidos team delivers enterprise cloud architecture, foundational shared services, and secure platform capabilities enabling mission systems across multi-cloud and hybrid environments. The
Enterprise IDAM Product Manager
will define and manage identity services that span AWS, Azure, GCP, OCI, and hybrid/on-premises environments. This role ensures identity architecture aligns with DoD Zero Trust strategy, supports IL2–IL6, and enables secure, seamless access to mission systems across classified and unclassified domains. You will work closely with cybersecurity architects, cloud platform engineers, network teams, and government stakeholders to implement enterprise-grade identity federation, privileged access management, role-based access control, and continuous monitoring solutions that form the foundation of Zero Trust architecture. Ideal candidates will have the ability to travel to the Tewksbury, MA area as needed. Primary Responsibilities
Enterprise Identity Strategy & Roadmap. Maintain the product vision and roadmap for cross-cloud IDAM services within Cloud One ACSS. Align identity services with DoD Zero Trust Architecture and DoD Identity Strategy. Enable standardized identity patterns for multi-cloud and hybrid environments. Ensure interoperability across AWS IAM, Azure Entra ID, GCP IAM, OCI IAM, and on-prem Active Directory. Identity Federation & Access Governance (lead lifecycle management of enterprise identity services including SSO, MFA, RBAC, ABAC, PAM). Enable federation using SAML, OAuth 2.0, OpenID Connect, and cross-domain identity brokers. Support centralized identity governance and lifecycle management. Define policies for least privilege access and just-in-time elevation. Zero Trust & Continuous Verification
Support implementation of Zero Trust principles including identity-centric access controls. Integrate conditional access policies and risk-based authentication. Enable device trust and identity verification mechanisms. Ensure identity telemetry feeds into enterprise security monitoring and SIEM platforms. Compliance, RMF & Security Integration
Ensure identity services comply with RMF, FedRAMP High, DoD SRG, DISA STIGs, and NIST 800-53 controls. Support identity components required for IL2–IL6 environments. Partner with cybersecurity teams to maintain ATO posture and continuous monitoring compliance. Develop audit logging and identity monitoring frameworks. Hybrid & Cross-Domain Integration
Enable identity synchronization between cloud and on-prem environments. Support integration with DoD PKI and CAC authentication. Facilitate cross-domain identity solutions where applicable. Ensure compatibility with classified and mission partner environments. Stakeholder Engagement & Governance
Serve as primary liaison between government leadership, cybersecurity stakeholders, and cloud platform teams for IDAM capabilities. Translate mission requirements into prioritized identity services and backlog features. Conduct executive briefings on identity risk posture, compliance status, and roadmap evolution. Participate in architecture review boards and Integrated Product Teams (IPTs). Documentation & Enterprise Communication
Develop and maintain identity reference architectures, access governance policies, federation implementation guides, and compliance artifacts. Publish enterprise identity standards and integration patterns. Maintain transparency on service maturity and security posture. Basic Qualifications
Bachelor’s degree and 8+ years of experience in identity management, cybersecurity, enterprise IT or a Master with 10+ years of applicable experience. 3+ years of experience in product management. Active DoD Secret clearance required; Top Secret preferred. DoD 8570.01 IAT Level II certification required prior to onboarding. 3+ years of experience implementing enterprise IDAM solutions. Experience supporting identity services in multi-cloud and hybrid environments. Strong Understanding
SAML, OAuth 2.0, OpenID Connect. RBAC and ABAC models. Federation and cross-account identity models. Privileged Access Management. CAC/PKI authentication integration. Experience supporting RMF and IL4/IL5 ATO processes. Experience operating in Agile and DevSecOps environments. Strong executive-level communication skills. Required Certifications
CISSP or equivalent. CIAM or similar credential. CSPO or equivalent. SAFe Product Owner/Product Manager or Agile certification. Preferred Certifications: Microsoft Identity and Access Administrator Associate, AWS Security Specialty, Google Cloud Professional Security Engineer, Oracle OCI Security Professional, CISM, ITIL v4, PMP. Preferred Experience
Experience supporting Cloud One or DoD Enterprise Cloud programs. Experience implementing Zero Trust in regulated environments. Experience with enterprise IAM tools (Okta, Ping, SailPoint, CyberArk or similar). Experience integrating identity telemetry into SIEM or SOAR. Experience supporting cross-domain or classified identity environments. Strategic thinker with Zero Trust understanding; strong collaboration across cybersecurity, networking, and cloud engineering teams. Risk-aware decision maker focused on secure-by-design identity architecture. Comfortable operating in high-visibility, mission-critical DoD programs. Note: This description excludes non-essential boilerplate and disallowed formatting such as
font
tags and extraneous HTML.
#J-18808-Ljbffr