Join our Talent Network >

Senior PKI Engineer (VG01155)

Job ID: 1924441
Location: SPRINGFIELD, VA, United States
Date Posted: Sep 27, 2019
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Teleworking: No

Share: mail

Job Description

Description

JOB DESCRIPTION

The Vanguard 2.2.1 contract currently has an opening for a Public Key Infrastructure (PKI) Systems Engineer to support the Department of State (DoS) Bureau of Information Resource Management (IRM) PKI program. This program provides transparent security services in support of the Department’s goals to secure communications among Department staff and systems. The position falls under the "SI Division support service line of the contract.


This is a senior level PKI engineering position, providing PKI engineering and integration support, administering, maintaining, and deploying various PKI systems based on Entrust solutions, onsite at the various DoS Datacenters and at certain selected DoS domestic and overseas locations.

The preferred candidate must possess strong skills in designing, installing, configuring, and maintaining PKI systems. Additionally, the preferred candidate should have some experience in providing tier-3 level support in large enterprises.

 
Responsibilities include:

Performing all aspects of systems design and PKI engineering in support of various PKI systems deployed at the Department of State.
  • Manage and maintain enclaved server hardware, storage, switches, server operating systems, and Hardware Security Modules (HSMs)

  • Providing in-depth subject matter expertise for engineering support related to Public Key Infrastructure (PKI) systems, especially in a government setting.

  • Maintaining existing PKI systems – patch existing systems, deploy new components based on customer demand

  • Directly work with customer to analyze requirements and then deploy security related solution to meet those requirements.

  • Performing problem analysis following any service issues to prevent recurrence

  • Performing product evaluations and making product recommendations

  • Identifying security risks to customer systems and suggest mitigations

  • Designing, building, and managing PKI enclaves conforming to the policies and standards of the Department of State, Homeland Security Presidential Directive 12 (HSPD-12), Federal Bridge Certification Authority (FBCA), National Institute of Standards and Technology (NIST), and other policies and standards as required.

  • Identifying security architectures and implementation gaps, vulnerabilities, and risks; developing, testing, and implementing solutions to address the gaps, and new or updated requirements.

  • Developing test cases for software/hardware testing and developing test evaluation reports for stakeholders.

  • Lead an effort in gathering requirements, performing gap analysis, developing and presenting potential solutions, and creating detailed design and implementation plans.

  • Developing and updating systems documentation (e.g., ConOps, Operating procedures, systems architecture documents.)

  • Ensuring the NIST 800-53 Rev. 4 security controls, where applicable, are in place and validated on all PKI systems.

  • Contribute to the technical direction on all areas of PKI architecture, strategies and automation and enforce governance and standards.


Qualifications

 
Security Clearance:     Secret (must be able to obtain TS)

 

 

Required Education/Skills:

 

  • Minimum 13+ years of relevant work experience with a Bachelor’s degree or additional years of experience in lieu of a degree 
  • Strong background in the Microsoft server operating systems and Certificate Authority (CA) providers
  • General understanding of cryptographic keys, symmetric and asymmetric keys, cryptographic key algorithms and cipher blocks
  • Working knowledge with network devices particularly Cisco switches.
  • Network infrastructure diagnostics (TCP/IP general networking knowledge, network monitoring tools)
  • Virtualization technologies – VMWare ESXI, vCenter, VMWare NSX
  • Working knowledge of external storage solutions, storage area networks (SANs), and Fiber Channel networks
  • Professionally and effectively communicate; both verbal and written at all levels within the organization
  • Ability to think analytically, troubleshoot, and solve problems
  • Ability to troubleshoot and resolve network/application/operating system issues
  • Self-starter, able to work independently with minimum supervision
  • Excellent MS-Windows Server administration& maintenance skills
  • Excellent oral and written communication skills
  • Excellent analytical and troubleshooting skills
  • Must possess and be able to maintain an active DoD Secret level clearance (minimum).
  • MUST be a US citizen 

 

Desired Qualifications

 
Desired Education/Skills: 
  • Knowledge of Entrust suite of PKI products (Security Manager, Administration Services, Security Manager Proxy) especially in a government setting.
  • Hands-on experience with Hardware Security Modules (HSMs), and external storage solutions.
  • Working knowledge with a Card Management Systems (CMS) solution for Smart Cards.
  • Experience integrating managed devices into MDM solutions (AirWatch, Intune).
  • Understanding of cloud security implementation practices, particularly PKI related. (Azure, AWS, etc.)
  • PowerShell scripting experience and/or other scripting expertise.
  • Network infrastructure diagnostics (TCP/IP general networking knowledge, network monitoring tools)
  • Expert level skills in virtualization technologies (e.g., VMWare vSphere)
  • Operational experience with LDAP and PKI Directory Management
  • Engineering and Integration experience with Two-factor authentication: RSA, PIV cards, custom smart card solutions, and biometric authentication.
  • Working experience deploying OCSP capabilities within a diverse and international organization
  • Experience with Enterprise Systems Architecture, engineering, and deployment
  • CISSP, Security+, or similar certification



Overview

SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability

Share: mail

Similar Jobs

Electronic Warfare (EW) Operations Planner

FORT BELVOIR, VA, United States
Cyber

Cyber Security System Engineer, Senior

MCLEAN, VA, United States
Cyber

Cyber Security Systems Engineer, Full Performance

MCLEAN, VA, United States
Cyber

Cyber Security Analyst Sr Principal

HERNDON, VA, United States
Cyber

Cyber Sec Analyst Principal

MCLEAN, VA, United States
Cyber

Staff Officer (Crystal City)

ARLINGTON, VA, United States
Cyber

Cyber Sec Analyst Principal / Navy Validator

WASHINGTON, DC, United States
Cyber

Senior Cyber Security Analyst

WASHINGTON, DC, United States
Cyber

Audit Technical Liaison

VIENNA, VA, United States
Cyber

Sr. Cyber Security Analyst

RESTON, VA, United States
Cyber

PKI Engineer

SPRINGFIELD, VA, United States
Cyber

Senior PKI Engineer - CMS

SPRINGFIELD, VA, United States
Cyber

Network Security Analyst

WASHINGTON, DC, United States
Cyber

Cyber Security Analyst / Information Assurance

WASHINGTON, DC, United States
Cyber

Cybersecurity T&E Engineer

DC, United States
Cyber

Computer Network Defense (CND) Linux Engineer

SPRINGFIELD, VA, United States
Cyber

Computer Network Defense (CND) Auditor

SPRINGFIELD, VA, United States
Cyber

Information System Security Officer

SPRINGFIELD, VA, United States
Cyber

Computer Network Defense Analyst

SPRINGFIELD, VA, United States
Cyber

JPSS IT Security Specialist

LANHAM, MD, United States
Cyber

Security Firewall Administrator/Shift Lead

WASHINGTON, DC, United States
Cyber

COMSEC Auditor (VG01309)

SPRINGFIELD, VA, United States
Cyber

Sr. IT Audit Specialist

VIENNA, VA, United States
Cyber

Security Operations Analyst - SOC Analyst 3

VIENNA, VA, United States
Cyber

Provide your information to receive jobs that fit you by keywords, location, and more,
and then receive great opportunities based on your skills and experience.

Join our Talent Network >