Job Description :
Title: Security Systems Administrator 3
Location: Seattle, WA
Duration: 12 Months Contract
Duties:
Position Summary:
The Security Engineer will be involved in the implementation, maintenance and support of CLINET''s Enterprise PKI and CLINET''s Product PKI. The position will involve the design, deployment, and support of CLINET''s PKI solutions for corporate and product teams.
Knowledge & Skills:
The Security Engineer requires a minimum of 5 years'' experience and knowledge in PKI technologies and solutions, including, Certification Authorities, SSL, CRL, and OCSP.
The position will also require familiarity with administration of Windows, Mac, and Linux platforms, including all PKI related certificate stores, services, and libraries.
The Security Engineer will use skills as a seasoned, experience professional with a full understanding of industry practices and company policies and procedures. The position will work on problems of diverse scope where analysis of data requires evaluation of identifiable factors and resolves a wide range of issues in imaginative as well as practical ways. This position is a fully qualified, career-oriented, journey-level position.
In addition, the Security Engineer
Must have the ability to perform complex, cross-platform, problem solving tasks
Demonstrate excellent analytical and troubleshooting skills
Capable of learning new technologies and products quickly
Will interact with senior internal and external personnel
Will normally receive limited instruction on a day-to-day work and will be given general instructions on new assignments
Demonstrate excellent oral and written communication skills
Skills:
Essential Duties and Responsibilities:
Assist in the implementation, maintenance and support in all aspects of PKI technology
Administer the PKI certificate lifecycle for various on premise or hosted solutions
Evaluate upgrades and new products in a lab environment for use in the enterprise PKI infrastructure
Participate in projects to evaluate, design, and deploy new PKI applications and services
Propose and implement improvements to CLINET''s PKI, authentication and directory services using industry best practices, standard procedures and effective change management
Support CLINET standard platforms; Windows, Mac, and Linux
Assist with the development and support of scripting and automation for internal and external APIs; Java, Python, RESTful and other web services
Will interact with various engineering and corporate technology teams to maintain, support, and resolve service issues.
Provide documentation and training to technology teams (Services Desk, Global Operation Center, Security Operation Center, Desktop Services, Desktop Engineering, Directory Services, and Messaging)
Work with Technical Writers to maintain PKI and authentication online resources
Required:
In depth Knowledge of Certificate Lifecycle Management
Experience with performing problem management related to PKI certificates
Experience with Microsoft Active Directory (AD) and user certificate enrollment
Experience with installing, managing, and troubleshooting PKI client software solutions
Experience with standard encryption protocols such as: SSL, IPSec, TLS and SSH.
Network and system administration experience in desktop and server environments.
Ability to implement and troubleshoot SSL technologies
Familiarity in security & encryption terminology
Demonstrated knowledge in systems administration, including:
Windows, Mac OS, and Linux
Microsoft Active Directory Global Policy Objects (GPOs)
Domain membership and authentication
DNS
Server hardening and security
SSL
Familiarity with x.509 digital certificates, profiles Key Usages, Enhanced Key Usage, Subject Alternative Names
Experience with various Certificate Storage (CAPI, Keychain, Java Key Store)
Familiarity with PKI Command-line tools (e.g. cer-tool, security, Openssl, etc
Linux hands-on experience in managing and supporting Linux server infrastructure in RHEL/Centos/Ubuntu
Ability to work independently and as a team member to solve difficult technical challenges on a global scale
Possession of excellent oral and written communication skills
Possession of excellent team collaboration skills
Desired:
Experience with Thales HSMs and Security World
Experience with SafeNet HSMs
Experience in API integration, Java, Python, RESTful and other web services
Familiarity with authentication technologies, including Single Sign-on (SSO), SAML, One-time Password (OTP), RADIUS, Kerberos and Smartcards
Education:
College diploma or University degree specializing in Cyber Security, Information Security or equivalen