Apply on Employer Site

Koniag Government Services · 2 days ago

Identity Engineering Services (Cyber IT Business Process Engineer III)

San Antonio, TX

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

Koniag Government Services is seeking an Endpoint Engineering Services (Cyber IT Business Process Engineer III) to support KDS at Joint Base, San Antonio, TX. This role involves providing advanced expertise in identity engineering and management services, designing and implementing IAM solutions, and ensuring compliance with DoD cybersecurity requirements.

EnterpriseGovernmentProfessional Services

No H1B

U.S. Citizen Only

Responsibilities

Provides advanced expertise and leadership in identity engineering and management services for the Defense Health Agency's extensive and complex IT infrastructure

Serves as a key specialist responsible for designing, implementing, and optimizing identity and access management (IAM) solutions across DHA's global network of military hospitals, medical clinics, and dental clinics

Leads the development and implementation of comprehensive identity engineering strategies that align with DoD cybersecurity requirements, Risk Management Framework (RMF), NIST guidelines, and various DoD strategies including Zero Trust, ICAM (Identity, Credential, and Access Management), and Digital Modernization

Ensures these strategies are effectively implemented across approximately 250,000 end-user devices, 3,000 physical and virtual servers, and 250 sites worldwide

Designs and oversees the implementation of advanced IAM architectures, including single sign-on (SSO), multi-factor authentication (MFA), privileged access management (PAM), and identity governance and administration (IGA) solutions. Ensures seamless integration of these systems with DHA's existing IT infrastructure and security controls

Develops and implements identity lifecycle management processes, ensuring efficient and secure onboarding, modification, and offboarding of user identities across all DHA systems and applications

This includes both internal users and external partners accessing DHA resources

Leads initiatives to implement attribute-based access control (ABAC) and role-based access control (RBAC) models, ensuring that access to sensitive information and systems is strictly controlled based on user attributes, roles, and the principle of least privilege

Collaborates with cybersecurity teams to integrate identity management solutions with broader security operations, including security information and event management (SIEM) systems, user and entity behavior analytics (UEBA), and threat intelligence platforms

Oversees the implementation and management of Public Key Infrastructure (PKI) and certificate management systems, ensuring secure authentication and encryption across DHA's IT environment

Develops and implements identity federation strategies to enable secure information sharing and access between DHA and other DoD entities, federal agencies, and healthcare partners

Leads efforts to automate identity management processes, developing scripts and leveraging AI and machine learning technologies to enhance efficiency, reduce human error, and improve security in identity-related operations

Provides expert guidance on identity engineering best practices to IT and security teams across DHA

Develops and delivers training programs to ensure all relevant personnel understand and adhere to established identity and access management policies and procedures

Collaborates with compliance and risk management teams to ensure that identity management practices meet all relevant regulatory requirements, including HIPAA, FISMA, and DoD-specific mandates

Generates regular reports on the state of identity management within DHA, including metrics on access control effectiveness, identity-related security incidents, and compliance status

Presents findings and recommendations to leadership for continuous improvement

Stays abreast of emerging technologies and methodologies in identity engineering, particularly those relevant to large-scale, complex healthcare IT environments

Recommends and implements improvements to enhance efficiency, security, and user experience

Qualification

IdentityAccess ManagementCybersecurity ComplianceIdentity Engineering StrategiesPublic Key InfrastructureIdentity Lifecycle ManagementIAM Solutions ImplementationRisk Management FrameworkDoD Security RegulationsTraining DevelopmentEmerging Technologies AwarenessTeam Collaboration