DevOps Automation Engineer

DevOps Automation Engineer

GDIT is partnering with the Department of Veterans Affairs (VA) to modernize and secure the enterprise Identity, Credential, and Access Management (ICAM) services that support millions of Veterans nationwide. As a Lead DevOps Automation Engineer, you will play a senior technical role driving automation, modernization, and operational excellence across VA’s identity ecosystem.

You will design and implement enterprise‑level DevOps and IAM automation frameworks, enabling secure, scalable, and compliant access solutions across on‑premise and cloud environments. This role acts as a technical bridge between security architecture and implementation teams, shaping the automation strategy while guiding junior engineers and collaborating with stakeholders across the ICAM enterprise.

HOW A DEVOPS AUTOMATION ENGINEER WILL MAKE AN IMPACT:
• Architect and implement DevOps automation solutions that support enterprise identity lifecycle, governance, access management, and provisioning capabilities.
• Lead the development of CI/CD pipelines, automation workflows, and IaC (Infrastructure‑as‑Code) supporting hybrid ICAM environments (on‑prem and cloud).
• Design and deliver scalable identity automation for high‑volume onboarding/offboarding, multi‑population identity models, and multi‑tenant environments.
• Implement and support cloud‑based identity and access governance solutions, including SailPoint, Saviynt, or similar platforms.
• Support modernization initiatives including legacy IAM migrations, directory consolidation, SSO federation, provisioning upgrades, and authoritative data remediation.
• Develop and maintain automation runbooks, operational procedures, SLA frameworks, and audit‑ready evidence supporting access governance and privileged access workflows.
• Build and optimize connectors, role‑based access frameworks, certifications, approvals, separation‑of‑duties logic, and role mining/design pipelines at scale.
• Apply AI/ML‑assisted analytics in IGA platforms (such as Saviynt) for anomaly detection, certification prioritization, identity risk scoring, and entitlement recommendations.
• Collaborate with security architects to ensure IAM automation aligns with Zero Trust principles, cloud security, API security, and data protection requirements.
• Support federated identity architecture by coordinating with enterprise partners, including external organizations and multi‑entity user communities.
• Engage with engineering teams, product owners, and program leadership to ensure automation solutions meet performance, compliance, and security standards.
• Contribute to continuous improvement, innovation, and engineering best practices across the ICAM program.

WHAT YOU'LL NEED TO SUCCEED:
• Ability to obtain a Public Trust clearance.

• Bachelor’s degree in Computer Science, Engineering, Information Systems, or a related discipline

• At least 10+ years of experience.
• Demonstrated healthcare IAM delivery experience across:

– at least one State/Local public health or Medicaid/eligibility environment
– at least one commercial payer/provider organization
– at least one Federal or Federal health‑adjacent environment

• Proven success delivering multi‑identity population solutions (employees, contractors, temps, vendors, affiliates) with unique lifecycle and entitlement rules.
• Experience with delegated administration, jurisdictional boundaries, and multi‑agency or multi‑department IAM environments.
• Evidence of automated, high‑volume onboarding/offboarding for large contractor or temporary workforces.
• Expertise implementing and supporting cloud‑based IAM, IGA, and access governance platforms.
• Hands‑on experience supporting hybrid IAM patterns, application modernization, data quality remediation, and legacy‑to‑modern IAM migrations.
• Experience leading multiple IAM modernization cutovers (parallel run, staged migration, rollback planning).
• Strong operational background including runbook development, L1–L3 support models, SLA definition, and audit compliance for access governance.
• Expertise designing and automating access requests, approvals, certifications, SoD controls, role mining, role design, and connector frameworks.
• Experience applying AI/ML‑driven analytics within IGA products.
• Experience implementing IAM components in cloud environments (such as AWS), including secure networking, logging, and deployment patterns.
• Strong understanding of the security architecture across IAM, cloud security, API security, and data security domains.

Certifications (one or more required): Product certifications in Saviynt, SailPoint, or equivalent IAM platforms.

Security Clearance: Must be able to obtain a Public Trust

Location: Hybrid position based in Washington, DC or Austin, TX.

Citizenship: No visa sponsorship available.

GDIT IS YOUR PLACE:
• Mission-driven culture supporting those who serve.
• AI-enabled career development tools and robust internal mobility.
• Competitive compensation, benefits, 401(k) match, and comprehensive wellness programs.
• Highly collaborative, innovative, and military-friendly environment.

#GDITFedHealthJobs