Junior PKI Specialist

Grant Leading Technology, LLC
Washington, DC
Jun 14, 2018
Jun 15, 2018
Accountant, IT
Full Time
Job Description We have an opening for a senior-level Public Key Infrastructure (PKI) Systems Engineer to support the PKI program. This program provides transparent security services in support of the Department's goals to secure communications among Department staff and systems. In addition, this role is responsible for integration support, administering, maintaining, and deploying various PKI systems based on Entrust solutions, onsite at the various Datacenters and at certain selected domestic and overseas locations. Understand PKI Architectures and the Public Key Infrastructure (PKI) key management environment for public key information of a public key cryptographic system. PKI architectures based on the number of Certificate Authorities (CAs) in the PKI, Where users of the PKI place their trust (known as a user's trust point ), and The trust relationships between CAs within a multi-CA PKI. Implement updated PKI environment, including Certificate Authorities (CA), Subordinate Certificate Authorities, Registration Authorities (RA), Certificate Revocation Lists (CRLs), and Certificate Management System/Tool, Online Certificate Status Protocol (OCSP) Responders, Hardware Security Modules (HSM) and other supporting physical/logical aspects to produce a stable PKI environment. Provide subject matter expert (SME) engineering support for all problems escalated to these SMEs for areas in the PKI environment Understand Implementation Secure Socket Layer ( SSL )/Transport Layer Security ( TLS ) processes and procedures Interpret and apply FIPS 201, HSPD-12, OMB memorandums, NIST publications Strong knowledge of AD (ADFS), 2FA (SAML), CAC/PIV, PKI, NAC, current and emerging technologies. Knowledge of: *Federal Information Security Management Act ( FISMA ) of 2010, Public Law 107-347 *Office of Management and Budget ( OMB ) Circular A-130 , Appendix III, "Management of Federal Information Resources" *NIST Special Publication 800-53 Rev3, Recommended Security Controls for Federal Information Systems, 12/07 HHS IRM Policy for Public Key Infrastructure (PKI) *Certification Authority (CA), January 8, 2001 HHS Public Key Infrastructure X.509 Certificate Practices Statement (CPS) *HHS Public Key Infrastructure X.509 Certificate Policy for HHS Domain Devices, Version 1.5, February 29, Senior Engineer (SE) must demonstrate at least 5 years' of experience in an Enterprise key management and PKI Clustered environment. Also, SE must also have at least 12 months experience in a multi-location, distributed government environment. User must also demonstrate experience in government processes and procedures. SE must demonstrate experience in multirole network PKI support and installation in a multi-network environment. SE also requires 12 months experience in Windows Certificate Services in a clustered environment to include Active Directory Auto enrollment, windows web enrollment and certificate services integration with enterprise management tools such as SCCM and Solarwinds. Excellent MS-Windows Server administration & maintenance Familiarity with PKIs and related technologies (LDAP directories, HSMs, OCSP) and security practices Excellent oral and written communication skills Excellent analytical and troubleshooting skills In addition to the Job Description requirements the PKI candidate MUST have the following knowledge and experience with: Homeland Security Presidential Directive ( HSPD-12 ), entitled, “Policy for a Common Identification Standard for Federal Employees and Contractors,” was issued on August 27, 2004, to enhance security and reduce identity fraud related to contractor physical access to federally-controlled facilities and/or logical access to federally-controlled information systems. Certificate Registration Authorities and Trusted Agent . Registration Authorities and Trusted Agents are responsible for the correct issuance of all certificates to authorized requester. Company Description Grant Leading Technology (GLT) is a verified Service Disabled Veteran Owned Small Business (SDVOSB) management and technology consulting firm. We provide expert knowledge, skills and capabilities to deliver agile enterprise solutions that align mission essential requirements with rapid, innovative, and cost-effective technologies. GLT is focused on quality delivery to enhance business performance and achieve client success. We specialize in effective strategies that deliver successful business results. We provide competitive benefits and compensation package.

Similar jobs