Identity Engineering Services Research & Development Specialist

Overview

We are seeking a highly skilled Identity Engineering R&D Specialist to lead the design, development, and testing of identity, credentialing, access management, and PKI/PKE solutions across the Military Health System (MHS) enterprise. This role focuses on researching, engineering, and implementing forward-looking, compliant solutions that support the DHA s identity and access management mission while maintaining security, compliance, and operational efficiency.

The R&D Specialist will drive technical innovation in directory services, identity and privilege management, cryptographic key management, and enterprise authentication systems, while enabling seamless integration across cloud, SaaS, and on-premises environments.

Key Responsibilities

Identity & Directory Services

• Engineer, design, and maintain directory services, including Active Directory Services (ADDS), Active Directory Lightweight Directory Services (ADLDS), and AD-integrated Secure DNS roles.
• Develop and update Technical Requirements and Architecture & Design Documents for MHS directory services.
• Maintain engineering packages, Risk Assessments, and integration with MS Server operating systems in alignment with DoD Enterprise ICAM Reference Design and DoDI 8520.03, Identity Authentication for Information Systems.
• Provide system requirements for directory services to ensure compliance with technical architecture authorization standards.

PKI & PKE Engineering

• Engineer and maintain Public Key Infrastructure (PKI) solutions compliant with DoDI 8520.02 and DHA PKI requirements.
• Provide PKE support to Med-COI, LAN/WLAN, mJAD, and other DHA/MHS systems.
• Maintain DHA Certificate Validation Suites (ActivIdentity Middleware, Axway Server/Desktop Validator).
• Engineer solutions enabling MHS applications to use X.509 certificates for authentication, confidentiality, integrity, and non-repudiation.
• Deliver enabling packages to support DHA and DoD PKI usage and management of cryptographic keys.
• Update DHA PKI IMA Certificate Authority infrastructure and provide engineering packages and risk assessments for upgrades or re-engineering activities.

Identity & Access Management

• Engineer identity management solutions to control user, group, and non-person entity access to resources across on-premises, SaaS, cloud, and partner networks.
• Implement policies and methods to define who/what is authorized and enforce access rights according to enterprise guidelines.
• Engineer identity management functionality, including reporting, alerts, alarms, and operational metrics.

Research & Development

• Research, design, develop, and test operating system-level software, compilers, and network distribution software for enterprise applications, medical systems, industrial, military, and general computing environments.
• Analyze software and system requirements, design embedded systems software as needed, and solve complex IT challenges using principles of computer science, engineering, and mathematical analysis.
• Develop innovative solutions to improve identity, credentialing, access management, and cryptographic key management capabilities.

Documentation & Knowledge Management

• Maintain detailed engineering packages, architecture diagrams, risk assessments, and technical documentation for identity, PKI, and PKE solutions.
• Provide guidance to teams on R&D methodologies, identity management best practices, and technical integration.

Required Skills & Qualifications

• Expertise in identity, credentialing, and access management solutions in enterprise IT environments.
• Hands-on experience with Active Directory (ADDS/ADLDS), DNS, PKI, and PKE systems.
• Strong knowledge of DoD/DHA ICAM Reference Design, DoDI 8520.02/03, DISA STIGs, and cybersecurity best practices.
• Experience designing, deploying, and maintaining cryptographic key management and certificate infrastructure.
• Knowledge of identity management policies, access controls, and automated account provisioning.
• Strong analytical, problem-solving, and documentation skills in R&D and engineering environments.

Preferred Certifications

• DoD 8570/8140 Baseline Certification (Security+ CE, CISSP, CASP+, CISM)
• Microsoft certifications such as MCSE: Identity Management or Azure AD
• PKI/cryptography certifications such as Certified PKI Professional (CPKIP)
• ITIL v4 Foundation or equivalent

Educaton & Experience

• Bachelor s degree in Computer Science, Information Technology, Engineering, or related field, or equivalent experience.
• 3 5 years of experience in identity engineering, PKI/PKE management, or enterprise IT R&D.
• Prior experience supporting DoD, DHA, or MHS identity and access management systems preferred.
• Clearance Required: Active Secret (or higher, as applicable)