PKI Systems Engineer
3 weeks ago
Description
The Vanguard 2.2.1 contract provides enterprise IT services to the Department of State (DOS) Diplomatic Technology Bureau. The contract currently has an opening for a Senior Public Key Infrastructure (PKI) system engineer. As a Senior PKI Engineer, you will be joining the team to participate and lead in managing, securing, engineering, and governing DOS’s key and certificate management services, including supporting robust, enterprise-grade Public Key Infrastructure (PKI), certificate lifecycle management (CLCM), infrastructure automation and credential management (CMS) systems. Your expertise in developing, implementing, and maintaining PKI solutions will be key to ensuring the integrity and reliability of DOS’s digital communications. You will be a member of a team tasked with providing cryptography expertise, including encryption (at-rest and in-transit) and key management services, as well as design, build and operate PKI related systems on-prem and in Cloud.
This role may allow some remote work based on the customer's request.
Responsibilities include:
-
Performing all aspects of systems design and PKI engineering in support of various PKI systems deployed at the Department of State.
-
Manage and maintain enclaved server hardware, storage, switches, server operating systems, and Hardware Security Modules (HSMs).
-
Providing in-depth subject matter expertise for engineering support related to Public Key Infrastructure (PKI) systems, especially in a government setting.
-
Maintaining existing PKI systems – patch existing systems, deploy new components based on customer demand.
-
Assist in evaluating and deploying solutions to support modern authentication (i.e SAML based authentication, FIDO2, PIV Derived Credential, etc.…)
-
Assist in designing and deploying solution in support of migrating to a Zero Trust Architecture environment.
-
Performing problem analysis following any service issues to prevent recurrence.
-
Identifying security risks to customer systems and suggest mitigations.
-
Designing, building, and managing PKI enclaves conforming to the policies and standards of the Department of State, Homeland Security Presidential Directive 12 (HSPD-12), Federal Bridge Certification Authority (FBCA), National Institute of Standards and Technology (NIST), and other policies and standards as required.
-
Identifying security architectures and implementation gaps, vulnerabilities, and risks; developing, testing, and implementing solutions to address the gaps, and new or updated requirements.
-
Developing test cases for software/hardware testing and developing test evaluation reports for stakeholders.
-
Developing and updating systems documentation (e.g., ConOps, Operating procedures, systems architecture documents.)
-
Ensuring the NIST 800-53 Rev. 4 security controls, where applicable, are in place and validated on all PKI systems.
-
Contribute to the technical direction on all areas of PKI architecture, strategies and automation and enforce governance and standards.
Qualifications
Required Education & Experience:
-
Bachelor’s degree in information technology, engineering, computer science, related field, or equivalent experience.
-
5+ years of experience in PKI, IT security, or related roles, with a strong focus on one or all of these certification authorities (EJBCA , Microsoft CA, Entrust). May accept less with very strong cloud experience.
-
Deep understanding of cryptographic protocols and algorithms.
-
Proficiency with either EJBCA, Entrust, or Microsoft Certificate Authority.
-
Familiarity with industry standards such as X.509, PKCS, and others.
-
Virtualization technologies – VMWare ESXI, vCenter, VMWare NSX.
-
Working knowledge of external storage solutions, storage area networks (SANs), and Fiber Channel networks.
-
Ability to troubleshoot and resolve network/application/operating system issues.
-
Excellent MS-Windows Server administration & maintenance skills.
Required Clearance:
-
US Citizenship.
-
Ability to obtain top secret clearance.
Preferred Skills:
-
Proficiency in enabling self-service workflow, orchestration, and compliance control.
-
Scripting Skills (PowerShell, Bash &/or Python): Proficiency in scripting with Bash and/or Python. Capable of writing and maintaining scripts for automating routine PKI tasks, enhancing operational efficiency, and reducing manual errors.
-
Experience with one or more Credential Management Systems (CMS) with experience integrating with all facets of certificate lifecycle.
-
Monitoring Expertise: Experience with monitoring tools and technologies. Skilled in setting up and managing systems to monitor the health and performance of the PKI infrastructure, ensuring high availability and proactive issue resolution.
-
Automation Abilities: Demonstrated experience in automating IT processes. Ability to implement automation solutions that streamline PKI operations and improve system reliability and security.
-
Splunk Proficiency: Knowledge of Splunk for log management and analysis. Capable of leveraging Splunk to gain insights into PKI system operations and security, enhancing situational awareness and decision-making.
-
Ability to configure and optimize PKI enrollment and operation protocols such as (SCEP, EST, TLS, etc..), ensuring the latest security standards are met and maintained in our PKI infrastructure.
-
Experience supporting/securing cloud-based services and implementing AWS and Azure cryptography, encryption and key management best practices and policies.
-
Must be able to effectively perform both independently and collaboratively as a strong team contributor.
-
Strong analytical and problem-solving skills.
-
Excellent communication and collaboration abilities with attention to detail.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site. REQNUMBER: 2407932
SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability
-
PKI Systems Engineer
3 weeks ago
Springfield, United States SAIC Full timeDescription The Vanguard 2.2.1 contract provides enterprise IT services to the Department of State (DOS) Diplomatic Technology Bureau. The contract currently has an opening for a Senior Public Key Infrastructure (PKI) system engineer. As a Senior PKI Engineer, you will be joining the team to participate and lead in managing, securing, engineering, and...
-
PKI Systems Engineer
2 months ago
Springfield, United States SAIC Full timeDescription The Vanguard 2.2.1 contract currently has an opening for a Public Key Infrastructure (PKI) Systems Engineer to support the Department of State (DoS) Bureau of Information Resource Management (IRM) PKI program. This program provides transparent security services in support of the Department's goals to secure communications among Department staff...
-
PKI Systems Engineer
4 weeks ago
Springfield, United States SAIC Full timeDescriptionThe Vanguard 2.2.1 contract provides enterprise IT services to the Department of State (DOS) Diplomatic Technology Bureau. The contract currently has an opening for a Senior Public Key Infrastructure (PKI) system engineer. As a Senior PKI Engineer, you will be joining the team to participate and lead in managing, securing, engineering, and...
-
Intermediate PKI Administrator
2 weeks ago
Springfield, Virginia, United States Chenega MIOS SBU Full timeIntermediate PKI Administrator - VAJoin Our Talent NetworkChenega Agile Real-Time Solutions (CARS)C-CARSChenega Job Title: Intermediate PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer certificate issues and PKI...
-
Lead PKI Administrator
1 month ago
Springfield, United States Chenega Corporation Full timeLead PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS) C-CARS-24-025 Company Job Title: Lead PKI Administrator Clearance: TS/SCI Location: Springfield, VA FLSA Status: Exempt, Full Time, Regular Summary: PKI support provides superior customer service PKI Support in direct support of customer...
-
Intermediate PKI Administrator
5 days ago
Springfield, United States Chenega MIOS Full timeIntermediate PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS) C-CARS-24-033 Chenega Job Title: Intermediate PKI Administrator Clearance: TS/SCI Location: Springfield, VA FLSA Status: Exempt, Full Time, Regular Summary: PKI support provides superior customer service PKI Support in direct support of...
-
Lead PKI Administrator
2 days ago
Springfield, United States Chenega MIOS Full timeLead PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS) C-CARS-24-025 Company Job Title: Lead PKI Administrator Clearance: TS/SCI Location: Springfield, VA FLSA Status: Exempt, Full Time, Regular Summary: PKI support provides superior customer service PKI Support in direct support of customer...
-
Senior PKI Administrator
2 days ago
Springfield, United States Chenega MIOS Full timeSenior PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS) Company Job Title: Senior PKI Administrator Clearance: TS/SCI Location: Springfield, VA FLSA Status: Exempt, Full Time, Regular Summary: PKI support provides superior customer service PKI Support in direct support of customer certificate issues...
-
Intermediate PKI Administrator
4 weeks ago
Springfield, United States Chenega MIOS SBU Full timeIntermediate PKI Administrator - VA Springfield, VAJoin our Talent Network Chenega Agile Real-Time Solutions (CARS) C-CARS-24-033 Chenega Job Title: Intermediate PKI Administrator Clearance: TS/SCI Location: Springfield, VA FLSA Status: Exempt, Full Time, Regular Summary: PKI support provides superior customer service PKI Support in direct support of...
-
PKI Administrator MUST HAVE TS/SCI
4 weeks ago
Springfield, United States A&M Technologies LLC Full timeJob DescriptionJob DescriptionPKI support provides superior customer service PKI Support in direct support of customer certificate issues and PKI system related issues.Duties and Responsibilities:• Provide support to the agency’s efforts to manage and monitor Public Key Infrastructure (PKI) Programs. This support includes the following activities:Serving...
-
PKI Administrator MUST HAVE TS/SCI
4 weeks ago
Springfield, United States A&M Technologies LLC Full timeJob DescriptionJob DescriptionPKI support provides superior customer service PKI Support in direct support of customer certificate issues and PKI system related issues.Duties and Responsibilities:• Provide support to the agency’s efforts to manage and monitor Public Key Infrastructure (PKI) Programs. This support includes the following activities:Serving...
-
Lead PKI Administrator
2 months ago
Springfield, United States Chenega MIOS SBU Full timeLead PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS)C-CARS-24-025 Company Job Title: Lead PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer certificate issues...
-
Intermediate PKI Administrator
2 months ago
Springfield, United States Chenega MIOS SBU Full timeIntermediate PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS)C-CARS-24-033 Chenega Job Title: Intermediate PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer...
-
Senior PKI Administrator
2 months ago
Springfield, United States Chenega MIOS SBU Full timeSenior PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS)Company Job Title: Senior PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer certificate issues and PKI...
-
Lead PKI Administrator
4 weeks ago
Springfield, United States Chenega MIOS SBU Full timeLead PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS)C-CARS-24-025 Company Job Title: Lead PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer certificate issues...
-
Senior PKI Administrator
4 weeks ago
Springfield, United States Chenega MIOS SBU Full timeSenior PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS)Company Job Title: Senior PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer certificate issues and PKI...
-
Intermediate PKI Administrator
4 weeks ago
Springfield, United States Chenega MIOS SBU Full timeIntermediate PKI Administrator - VA Springfield, VA Join our Talent Network Chenega Agile Real-Time Solutions (CARS)C-CARS-24-033 Chenega Job Title: Intermediate PKI AdministratorClearance: TS/SCILocation: Springfield, VAFLSA Status: Exempt, Full Time, RegularSummary:PKI support provides superior customer service PKI Support in direct support of customer...
-
Systems Engineer
2 weeks ago
Springfield, Illinois, United States BAE Systems Full timeJob Description BAE Systems is seeking a Systems Engineer to work on a team supporting our government customer. As a Systems Engineer you will help ensure today is safe and tomorrow is smarter. You will tailor cutting-edge solutions to the unique requirements of our customers. Our work depends on a TS/SCI cleared Systems Engineer joining our team to support...
-
Systems Integration Engineer
1 month ago
Springfield, United States Arena Technical Resources Full timeSystems Integration Engineer Location: Springfield, VA, US Job ID: 16331 Job Description Job Description: Title: Systems Integration Engineer Location: On site in Springfield, VA Citizenship/Clearance Requirement: US Citizen with an ActiveTS/SCI clearance required.This position supports a government contract. Job Description: As a Systems Integration...
-
Systems Integration Engineer
4 weeks ago
Springfield, United States Arena Technical Resources Full timeSystems Integration Engineer Location: Springfield, VA, US Job ID: 16331 Job Description Job Description: Title: Systems Integration Engineer Location: On site in Springfield, VA Citizenship/Clearance Requirement: US Citizen with an ActiveTS/SCI clearance required.This position supports a government contract. Job Description: As a Systems Integration...
