Vanguard 2.2.1 contract currently has an opening for a Public Key
Infrastructure (PKI) Systems Engineer to support the Department of State (DoS)
Bureau of Information Resource Management (IRM) PKI program. This program
provides transparent security services in support of the Department’s goals to
secure communications among Department staff and systems. The position falls
under the "SI Division support service line of the contract.
is a PKI engineering position, engineering and integration support,
administering, maintaining, and deploying various PKI systems based on Entrust
solutions, onsite at the various DoS Datacenters and at certain selected DoS
domestic and overseas locations
preferred candidate must possess strong skills in designing, installing,
configuring, and maintaining PKI systems. Additionally, the preferred candidate
should have some experience in providing tier-3 level support in large
all aspects of systems design and PKI engineering in support of various PKI
systems deployed at the Department of State.
- Manage and maintain
enclaved server hardware, storage, switches, server operating systems, and
Hardware Security Modules (HSMs)
- Providing in-depth
subject matter expertise for engineering support related to Public Key
Infrastructure (PKI) systems, especially in a government setting.
- Maintaining existing PKI
systems – patch existing systems, deploy new components based on customer
- Directly work with
customer to analyze requirements and then deploy security related solution
to meet those requirements.
- Performing problem
analysis following any service issues to prevent recurrence
- Performing product
evaluations and making product recommendations
- Identifying security
risks to customer systems and suggest mitigations
- Designing, building, and
managing PKI enclaves conforming to the policies and standards of the
Department of State, Homeland Security Presidential Directive 12
(HSPD-12), Federal Bridge Certification Authority (FBCA), National
Institute of Standards and Technology (NIST), and other policies and
standards as required.
- Identifying security
architectures and implementation gaps, vulnerabilities, and risks;
developing, testing, and implementing solutions to address the gaps, and
new or updated requirements.
- Developing test cases
for software/hardware testing and developing test evaluation reports for
- Lead an effort in gathering
requirements, performing gap analysis, developing and presenting potential
solutions, and creating detailed design and implementation plans.
- Developing and updating
systems documentation (e.g., ConOps, Operating procedures, systems
- Ensuring the NIST 800-53
Rev. 4 security controls, where applicable, are in place and validated on
all PKI systems.
to the technical direction on all areas of PKI architecture, strategies and
automation and enforce governance and standards.
Bachelors and nine (9) years or more experience. Equivalent work experience accepted.