Job Description :
Infrastructure Engineer
Team Size
6
Client / Work Location
Washington DC (work to be performed on-site)
Special Requirements
Work Authorization: US Citizen
Clearance Required: Public Trust Clearance (required prior to start)
Role Title
Public Key Infrastructure Engineer
Duration
Long term contract
# of Resources Needed
2
Hours per Week
40
Job Description
The position will be for a senior technical resource for the client''s Public
Key Infrastructure (PKI) to include the development of strategy, technical
standards, and implementation guidance. The client receives most of their
PKI support as part of a managed service, the candidate will serve as the
technical support for all on premise OCSP and CRL hardware. Additional areas
of interest include the use of digital certificates, technical feasibility
of enforcing smart card logon at the Active Directory user account level,
and the use of derived credentials.
You will be defining, designing, and implementing processes and best
practices to manage the lifecycle of PKI for the client. You will serve as
the client''s lead PKI subject matter expert. You will be providing technical
guidance and best practices for PKI processes and procedures. As an
engineer, you will be building and maintaining internal PKI systems.
Additional responsibilities outside of PKI include the management of general
Identity Management products to include a privileged Identity Management
solution and/or federation technology.
Must have excellent verbal and written communication skills. Must work
onsite at DOL client site M-F during normal business hours. Must be a
responsible member of an interdisciplinary team.
Candidates that only demonstrate knowledge of PKI principles or experience
operating as a local registration authority will require additional
education, certification, or experience in PKI and related subject areas.
Technical Skills:
Skill
Years/Level of Experience
Mandatory
Prior experience designing, building, and implementing a federally compliant
PKI system
7-10 years
Knowledge and experience with Federal PKI policies and guidelines to include
the PIV standard, best practices for Privileged Account management, and
others.
7-10 years
Configuration of OCSP and CRL hardware and software
5-7 years
Knowledge and experience developing a Federally compliant Certificate Policy
(CP) and Certification Practice Statement (CPS)
5-7 years
Experience with X.509, RSA and general certificate management processes.
3-5 years
Knowledge of derived credential standards and implementation methodology
3-5 years
Must have experience with PKI and providing certificates in UNIX or Windows
environments
3-5 years
Preferred
Knowledge and experience with Microsoft Active Directory, PowerShell and/or
other scripting tools
optional
Experience installing, configuring, and maintaining Windows Server 2008/2012
optional
Education Level
Bachelor''s Degree or minimum of 7 years of relevant professional experience