Koniag IT Systems (KITS), a Koniag Government Services company, is seeking an experienced ICAM ISSO (Identity, Credential, and Access Management Information System Security Officer) to support critical cybersecurity and identity management initiatives. The ideal candidate is a detail-oriented security professional with a strong background in ICAM frameworks, federal security compliance, and risk management. The successful candidate will bring a combination of technical expertise and strong communication skills to ensure the security and integrity of identity and access management systems. Ability to obtain or maintain the required security clearance to support our government customer.
We offer competitive compensation and an extraordinary benefits package including health, dental, and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.
The ICAM ISSO will serve as the primary security point of contact responsible for ensuring confidentiality, integrity, and availability of identity, credentials, and access management systems. This individual will work closely with system owners, program managers, and security teams to maintain system authorization, manage risks, and ensure compliance with federal security standards and ICAM policies.
Principal responsibilities will include, but are not limited to:
- Serve as the Information System Security Officer (ISSO) for one or more ICAM-related information systems, ensuring continuous monitoring and compliance with applicable federal security frameworks.
- Develop, maintain, and update System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and other Authorization to Operate (ATO) documentation in accordance with NIST and agency-specific requirements.
- Support the Assessment and Authorization (A&A) process, including facilitating security assessments, coordinating with Security Control Assessors (SCAs), and preparing authorization packages.
- Monitor and manage the security posture of ICAM systems, including identity proofing, credentialing, authentication, and access control solutions.
- Review and analyze audit logs, security alerts, and system events to identify anomalies, potential threats, and compliance gaps.
- Coordinate with system administrators, developers, and engineers to ensure security controls are properly implemented and functioning as intended.
- Identify and document system vulnerabilities and risks, coordinating remediation efforts and tracking progress through the POA&M process.
- Support the implementation and governance of ICAM policies, procedures, and standards in alignment with federal mandates such as FICAM, HSPD-12, EO 14028, and OMB Memoranda.
- Participate in security incident response activities, including investigation, containment, and reporting of security events related to identity and access management systems.
- Conduct periodic security reviews and assessments to ensure ongoing compliance with security requirements and ICAM best practices.
- Provide security guidance and recommendations to program teams regarding identity management, privileged access management (PAM), multi-factor authentication (MFA), and zero trust principles.
- Collaborate with cross-functional teams including IT, compliance, and operations staff to align security practices with organizational and mission objectives.
- Prepare and deliver security briefings, reports, and documentation for government stakeholders and leadership.
Education and Experience:
Required:
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field from an accredited college or university.
- 5+ years of experience in information security, with at least 2 years of direct experience in an ISSO role or equivalent security capacity.
- Demonstrated experience supporting the NIST Risk Management Framework (RMF) and ATO processes.
- Experience working with ICAM technologies and frameworks, including identity proofing, PKI, MFA, and access management solutions.
- Active or ability to obtain the required security clearance.
Preferred:
- Experience supporting federal government IT security programs.
- Familiarity with federal ICAM guidance, including FICAM Roadmap, NIST SP 800-63, and NIST SP 800-53.
Required Skills and Competencies:
- Exceptional communication skills in English – both written and oral – with the ability to communicate effectively with technical and non-technical stakeholders, including government leadership.
- Strong working knowledge of the NIST Risk Management Framework (RMF), including NIST SP 800-53, NIST SP 800-37, and FIPS 199/200.
- Proficiency in developing and maintaining ATO documentation, including SSPs, POA&Ms, Security Assessment Reports (SARs), and Interconnection Security Agreements (ISAs).
- Knowledge of ICAM concepts including identity lifecycle management, credentialing, authentication protocols (MFA, PIV/CAC), privileged access management (PAM), and single sign-on (SSO).
- Experience with continuous monitoring programs and security information and event management (SIEM) tools.
- Ability to analyze and interpret vulnerability scan results (e.g., Nessus, Tenable) and work with system teams to remediate findings.
- Familiarity with federal cybersecurity policies, directives, and mandates, including FISMA, HSPD-12, EO 14028, and OMB Memoranda.
- Strong analytical and problem-solving skills with attention to detail in reviewing security controls and documentation.
- Ability to manage multiple priorities and deliver quality work products within defined timelines.
- Ability to obtain and maintain the required security clearance.
Desired Skills and Competencies:
- Experience working in a federal government IT or cybersecurity environment.
- Knowledge of Zero Trust Architecture (ZTA) principles and implementation strategies, particularly as they relate to identity and access management.
- Familiarity with Privileged Access Management (PAM) tools such as CyberArk, BeyondTrust, or similar platforms.
- Experience with identity governance and administration (IGA) platforms.
- Knowledge of SAML, OAuth2, OpenID Connect (OIDC), and other authentication and federation protocols.
- Familiarity with cloud-based ICAM solutions and platforms (e.g., Azure Active Directory, Okta, AWS IAM).
- One or more of the following certifications:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- CompTIA Security+
- CAP (Certified Authorization Professional)
- GIAC Security Essentials (GSEC)
- Experience with GRC (Governance, Risk, and Compliance) tools such as XACTA, eMASS, or Archer.
Our Equal Employment Opportunity Policy
The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment.
The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations.
Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com.
Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352