Identity Engineering Services; Cyber IT Business Process Enginee Security Clearance

Position: Identity Engineering Services (Cyber IT Business Process Enginee with Security Clearance
Koniag Data Solutions, a Koniag Government Services company, is seeking an Endpoint Engineering Services (Cyber IT Business Process Engineer III) to support KDS at Joint Base, San Antoino, TX. This position requires the candidate to be able to obtain a Public Trust. This position is for a Future New Business Opportunity. We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

Essential Functions, Responsibilities & Duties may include, but are not limited to:
* Provides advanced expertise and leadership in identity engineering and management services for the Defense Health Agency's extensive and complex IT infrastructure.
* Serves as a key specialist responsible for designing, implementing, and optimizing identity and access management (IAM) solutions across DHA's global network of military hospitals, medical clinics, and dental clinics.
* Leads the development and implementation of comprehensive identity engineering strategies that align with DoD cybersecurity requirements, Risk Management Framework (RMF), NIST guidelines, and various DoD strategies including Zero Trust, ICAM (Identity, Credential, and Access Management), and Digital Modernization.
* Ensures these strategies are effectively implemented across approximately 250,000 end-user devices, 3,000 physical and virtual servers, and 250 sites worldwide.
* Designs and oversees the implementation of advanced IAM architectures, including single sign-on (SSO), multi-factor authentication (MFA), privileged access management (PAM), and identity governance and administration (IGA) solutions. Ensures seamless integration of these systems with DHA's existing IT infrastructure and security controls.
* Develops and implements identity lifecycle management processes, ensuring efficient and secure onboarding, modification, and offboarding of user identities across all DHA systems and applications.
* This includes both internal users and external partners accessing DHA resources.
* Leads initiatives to implement attribute-based access control (ABAC) and role-based access control (RBAC) models, ensuring that access to sensitive information and systems is strictly controlled based on user attributes, roles, and the principle of least privilege.
* Collaborates with cybersecurity teams to integrate identity management solutions with broader security operations, including security information and event management (SIEM) systems, user and entity behavior analytics (UEBA), and threat intelligence platforms.
* Oversees the implementation and management of Public Key Infrastructure (PKI) and certificate management systems, ensuring secure authentication and encryption across DHA's IT environment.
* Develops and implements identity federation strategies to enable secure information sharing and access between DHA and other DoD entities, federal agencies, and healthcare partners.
* Leads efforts to automate identity management processes, developing scripts and leveraging AI and machine learning technologies to enhance efficiency, reduce human error, and improve security in identity-related operations.
* Provides expert guidance on identity engineering best practices to IT and security teams across DHA.
* Develops and delivers training programs to ensure all relevant personnel understand and adhere to established identity and access management policies and procedures.
* Collaborates with compliance and risk management teams to ensure that identity management practices meet all relevant regulatory requirements, including HIPAA, FISMA, and DoD-specific mandates.
* Generates regular reports on the state of identity management within DHA, including metrics on access control effectiveness, identity-related security incidents, and compliance status.
* Presents findings and recommendations to leadership for continuous improvement.
* Stays abreast of emerging technologies and methodologies in identity engineering, particularly those relevant to large-scale, complex healthcare IT environments.
*…