The Vanguard 2.2.1 contract currently has an opening for a Public Key Infrastructure (PKI) Systems Engineer to support the Department of State (DoS) Bureau of Information Resource Management (IRM) PKI program. This program provides transparent security services in support of the Department’s goals to secure communications among Department staff and systems. The position falls under the "SI Division support service line of the contract.
This is a senior level PKI engineering position, providing PKI engineering and integration support, administering, maintaining, and deploying various PKI systems based on Entrust solutions, onsite at the various DoS Datacenters and at certain selected DoS domestic and overseas locations.
The preferred candidate must possess strong skills in designing, installing, configuring, and maintaining PKI systems. Additionally, the preferred candidate should have some experience in providing tier-3 level support in large enterprises.
Manage and maintain enclaved server hardware, storage, switches, server operating systems, and Hardware Security Modules (HSMs)
Providing in-depth subject matter expertise for engineering support related to Public Key Infrastructure (PKI) systems, especially in a government setting.
Maintaining existing PKI systems – patch existing systems, deploy new components based on customer demand
Directly work with customer to analyze requirements and then deploy security related solution to meet those requirements.
Performing problem analysis following any service issues to prevent recurrence
Performing product evaluations and making product recommendations
Identifying security risks to customer systems and suggest mitigations
Designing, building, and managing PKI enclaves conforming to the policies and standards of the Department of State, Homeland Security Presidential Directive 12 (HSPD-12), Federal Bridge Certification Authority (FBCA), National Institute of Standards and Technology (NIST), and other policies and standards as required.
Identifying security architectures and implementation gaps, vulnerabilities, and risks; developing, testing, and implementing solutions to address the gaps, and new or updated requirements.
Developing test cases for software/hardware testing and developing test evaluation reports for stakeholders.
Lead an effort in gathering requirements, performing gap analysis, developing and presenting potential solutions, and creating detailed design and implementation plans.
Developing and updating systems documentation (e.g., ConOps, Operating procedures, systems architecture documents.)
Ensuring the NIST 800-53 Rev. 4 security controls, where applicable, are in place and validated on all PKI systems.
Contribute to the technical direction on all areas of PKI architecture, strategies and automation and enforce governance and standards.