Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies.
Information System Security Manager
Location
United States
Posted
3 days ago
Salary
0
Seniority
Lead
Job Description
Information System Security Manager
Koniag Government Services, LLC
Role Description Koniag IT Systems, LLC, a Koniag Government Services company, is seeking an experienced Information System Security Manager (ISSM) to join a team supporting Identity, Credential, and Access Management (ICAM) solutions built on the Okta platform for our government customers. The ideal candidate is a seasoned cybersecurity professional with a strong background in information system security management, risk management frameworks, and hands-on familiarity with Okta-based identity and access management solutions in a federal environment. This individual will serve as the primary security authority for Okta-based ICAM systems, ensuring that all security requirements, compliance obligations, and risk management activities are effectively planned, implemented, and maintained. The Okta ISSM will serve as the primary information system security authority for Okta-based ICAM systems and solutions operating within a federal government environment. This individual will be responsible for managing all aspects of the information security program for assigned systems, including: - Authorization and accreditation activities - Continuous monitoring - Risk management - Security compliance Principal responsibilities will include but are not limited to: - Serve as the primary ISSM for Okta-based ICAM systems, maintaining responsibility for the overall security posture, compliance, and risk management of assigned information systems. - Lead and manage the Authority to Operate (ATO) process for Okta-based ICAM systems, including the development, maintenance, and submission of all required security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessment Reports (RARs), and Plans of Action and Milestones (POA&Ms). - Implement and manage the NIST Risk Management Framework (RMF) across all phases of the system lifecycle for assigned Okta-based ICAM systems, including categorization, security control selection, implementation, assessment, authorization, and continuous monitoring. - Develop, maintain, and enforce information security policies, procedures, and standards for Okta-based ICAM systems in alignment with federal requirements and organizational directives. - Conduct and oversee continuous monitoring activities, including regular security control assessments, vulnerability scans, log reviews, and security audits of Okta environments. - Review and assess Okta platform configurations, authentication policies, access controls, and integration settings to ensure alignment with security baselines and federal security standards. - Collaborate with Okta administrators and ICAM engineers to identify and remediate security vulnerabilities, misconfigurations, and compliance gaps within the Okta environment. - Manage and track POA&Ms to ensure timely and effective remediation of security findings and vulnerabilities identified through assessments, audits, and continuous monitoring activities. - Review, assess, and approve or deny change requests affecting the security posture of Okta-based ICAM systems, participating in change management processes and change control boards (CCBs) as required. - Coordinate with the Authorizing Official (AO), Information System Security Officers (ISSOs), and other security stakeholders to communicate system security status, risks, and recommendations. - Support incident response activities related to Okta-based ICAM systems, including security event investigation, containment, remediation, and after-action reporting. - Develop and deliver security awareness and training materials related to Okta ICAM security requirements and best practices for system users and administrators. - Ensure compliance with applicable federal laws, regulations, and policies, including FISMA, FedRAMP, OMB Circulars, and agency-specific security directives. - Maintain accurate and up-to-date system security documentation and artifacts within designated governance, risk, and compliance (GRC) tools. - Provide security guidance and recommendations to program managers, system owners, and technical teams on matters related to Okta ICAM security architecture and design. Qualifications - Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field from an accredited college or university; equivalent work experience may be considered in lieu of a degree. - 5+ years of experience in information system security management, cybersecurity, or a related field within a federal government IT environment. - 3+ years of experience working with the NIST Risk Management Framework (RMF) and supporting ATO processes for federal information systems. - Demonstrated familiarity with Okta or comparable identity and access management platforms. Requirements - Active Secret Clearance required. - Exceptional communication skills in English – both written and oral – with the ability to communicate complex security concepts effectively to both technical and non-technical audiences, including senior government leadership and authorizing officials. - Deep knowledge and hands-on experience implementing the NIST Risk Management Framework (RMF), including all phases from system categorization through continuous monitoring. - Demonstrated experience developing and maintaining federal security documentation, including SSPs, SARs, RARs, POA&Ms, and contingency plans. - Strong understanding of federal information security laws, regulations, and policies, including FISMA, FedRAMP, NIST SP 800-53, NIST SP 800-37, and OMB Circulars. - Familiarity with Okta platform capabilities, including SSO, MFA, Universal Directory, Lifecycle Management, and API Access Management, and the ability to assess their security configurations against established baselines. - Knowledge of ICAM frameworks and federal identity management standards, including FICAM, NIST SP 800-63, and Zero Trust Architecture principles. - Experience conducting or overseeing continuous monitoring activities, including vulnerability scanning, log analysis, and security control assessments. - Strong understanding of information security concepts including access control, authentication, encryption, audit logging, and incident response. - Experience managing and tracking POA&Ms and coordinating remediation activities with technical teams. - Ability to assess and communicate security risks, develop risk mitigation strategies, and brief findings to government stakeholders and authorizing officials. - Experience participating in change management processes and evaluating the security impact of proposed changes to information systems. - Proficiency with governance, risk, and compliance (GRC) tools such as XACTA, eMASS, or equivalent platforms. - Demonstrated ability to manage multiple priorities and work effectively in a fast-paced, team-oriented environment. Desired Skills and Competencies - Experience serving as an ISSM or ISSO for cloud-hosted or SaaS-based federal information systems, particularly those leveraging FedRAMP-authorized platforms. - Okta Certified Administrator, Okta Certified Professional, or equivalent Okta certification. - Hands-on experience administering or supporting Okta environments, including configuration review and security hardening. - Familiarity with additional ICAM platforms such as SailPoint, CyberArk, Ping Identity, or ForgeRock and their associated security considerations. - Experience supporting or leading FedRAMP authorization processes for cloud-based systems. - Knowledge of Privileged Access Management (PAM) concepts and associated security requirements. - Understanding of PIV/CAC authentication and its integration within federal ICAM architectures. - Experience with SIEM platforms and security monitoring tools for detecting and investigating identity-related security events. - Familiarity with Zero Trust Architecture implementation and its intersection with ICAM security requirements. - Certified Information Systems Security Professional (CISSP) certification. - Certified Information Security Manager (CISM) certification. - CompTIA Security+ or equivalent certification. - Experience with cloud security frameworks and the security considerations associated with AWS, Azure, or Google Cloud environments. - Familiarity with DevSecOps practices and the integration of security requirements into CI/CD pipelines involving identity services. Benefits - Competitive compensation - Extraordinary benefits package including health, dental, and vision insurance - 401K with company matching - Flexible spending accounts - Paid holidays - Three weeks paid time off - And more
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Security Engineer, Threat Detection and Response
Maleda TechConnecting in demand IT talent with clients across the US
• Perform investigations of security incidents using digital forensics and data analytics • Use coding, data analytics, and investigation skills to hunt, detect, and respond to threats • Build automation and detection models to identify anomalous activity and mitigate threats at scale • Proactively hunt for threats in corporate and production environments • Partner with engineering teams to build advanced detection solutions and carry out complex investigations • Identify gaps in infrastructure and work with business partners to improve visibility through logging and detection • Collaborate with cross-functional teams such as Legal, Privacy, and Engineering for efficient, large-scale response
Security Administrator
Fusion92At Fusion92, we believe great work happens when friction is removed and people are trusted to lead. Our culture is grounded in values that show up in our work, our decisions and our teams: Curious – We challenge assumptions and ask better questions. Fearless – We take smart risks and lead through change. Team-Focused – We win together across disciplines and time zones. Leaders at Every Level – Ownership and initiative matter more than titles.
Role Description Fusion92 is an award-winning Marketing Transformation Partner that helps brands solve complex business challenges through data, technology, and innovation. We move fast, think boldly, and embrace a culture that rewards curiosity and fearless problem-solving. As we continue to deepen our investment in AI and data-driven initiatives, we are expanding our security function to match that ambition. The right candidate is someone who lives and breathes security, serving as a trusted authority on both current threats and the evolving landscape. This role carries real organizational weight: the security champion for a company at the leading edge of AI and marketing innovation, responsible for ensuring that as Fusion92 pushes forward, it does so with the controls, visibility, and confidence to back it up. This is a cross-departmental role spanning IT & Technical Operations, Platform, Product & Innovation, and Compliance. Day-to-day security operations are part of the job, but so is the bigger picture: - Identifying gaps - Governing the security implications of AI adoption - Shaping how we mature our infrastructure - Contributing meaningfully to where Fusion92 goes next This candidate will have real latitude to recommend and implement improvements, and the opportunity to build security capability across the broader team over time. Qualifications - 3+ years of hands-on experience in IT security operations or security administration - Working knowledge of Microsoft Entra ID (Azure AD), including Conditional Access, PIM, sign-in log analysis, and identity protection - Hands-on experience with endpoint security platforms such as SentinelOne, CrowdStrike, or equivalent EDR/EPP tools - Experience with SIEM platforms and vulnerability scanning technologies - Working knowledge of Linux systems, including command-line proficiency and familiarity with common security and administrative tasks in Linux environments - Working knowledge of network security concepts, operating system security, and cloud security principles - Familiarity with compliance frameworks such as SOC 2, NIST, ISO 27001, or CIS Controls for gap analysis purposes - Strong communication skills, with the ability to translate technical findings for both IT peers and non-technical stakeholders - Self-directed and accountable, with the ability to manage competing priorities in a high-alert-volume environment Requirements - Familiarity with AI security considerations, including data governance, third-party AI integration risks, and acceptable use policy frameworks - Experience with SAML/OIDC SSO configurations and enterprise app integrations in Entra ID - Familiarity with Huntress, Blumira, or Mimecast - Experience in a marketing transformation, professional services, or technology-driven environment - Bachelor’s degree in Information Technology, Cybersecurity, or a related field, or equivalent experience - Industry certifications such as CISSP, CompTIA Security+, CEH, GIAC, SC-200, or equivalent Microsoft or cloud security credentials
• The Lead Information Security Engineer is a senior cybersecurity leader responsible for protecting the organization’s digital ecosystem across product development, manufacturing, and enterprise IT systems. • This role ensures the security of connected medical/surgical devices, intellectual property, and regulated environments, while maintaining compliance with cybersecurity guidance, ISO standards, and global regulations. • This position plays a critical role in enabling secure product innovation, patient safety, and operational resilience across the device lifecycle. • Lead detection and response for incidents affecting: manufacturing systems (OT/ICS), connected medical/surgical devices, and enterprise IT environments • Manage SOC operations with prioritization of IT security, production integrity, and supply chain impact • Investigate and respond to incidents involving intellectual property theft, disruptions and/or ransomware affecting production lines, and IT vulnerabilities
Staff Cybersecurity Architect – Data Security, Data Loss Prevention
Reinsurance Group of America, IncorporatedTrusted Partner. Proven Results.
• Develop, maintain, and evolve enterprise data security and data loss prevention architectures aligned to business objectives, regulatory requirements, and data classification standards. • Champion the integration of datacentric security controls across endpoint, identity, collaboration, storage, and data platforms, ensuring secure by default and least privilege principles. • Design and operationalize Microsoft Purview Information Protection and DLP capabilities, including sensitivity labeling, classification, policy enforcement, and user experience considerations. • Architect and implement Microsoft Defender capabilities (Endpoint, Identity, Office 365, Cloud Apps) to protect data throughout its lifecycle. • Serve as a senior technical authority for data security and DLP across Windows, macOS, Windows Server, and Linux environments, ensuring consistent enforcement across heterogeneous platforms. • Integrate Microsoft Security capabilities with complementary platforms such as Varonis Data Security to provide comprehensive data protection. • Author and maintain data security and DLP standards, reference architectures, and technical guardrails aligned to NIST and internal security frameworks. • Convert business risks and regulatory obligations into technical requirements and traceable, measurable mitigation strategies. • Evaluate new platforms, tools, and vendors for strategic fit, security posture, and architectural impact. • Provide technical leadership, mentorship, and escalation support for complex data security and DLP challenges. • Communicate control posture, risks, and recommendations clearly to engineering, audit, and leadership stakeholders. • Continuously assess and improve data security posture through metrics, dashboards, and control validation. • Collaborate with PKI teams to manage certificate lifecycle operations, including issuance, renewal, revocation, and inventory. • Perform other duties as assigned.


