Apply on Employer Site

Peraton · 2 months ago

SITEC - PKI Architect - MacDill AFB

Tampa, FL

Full-time

Onsite

Mid, Senior Level

$80K/yr - $128K/yr

6+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a PKI Architect to support the Special Operation Command Information Technology Enterprise Contract (SITEC) by designing, deploying, and managing highly available PKI solutions to ensure secure operations and communications across the organization.

Information TechnologyRobotics

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Design, deploy, and manage highly available PKI solutions ensuring secure and resilient operations across the organization, and establish integration of PKI with enterprise applications and systems to ensure secure communication and data protection

Utilize and manage PKI tools such as Microsoft Active Directory Certificate Services, OpenSSL, HashiCorp Vault, and AWS Certificate Manager for key management and distribution, and configure, deploy, and manage Hardware Security Modules (HSMs) to enhance the security of key storage and operations

Develop and implement strategies and processes for effective key lifecycle management including creation, distribution, rotation, renewal, and revocation, and integrate PKI with Registration Authorities (RA) and Certificate Authorities (CA) to streamline key issuance and management processes

Define target state architecture and target operating models for PKI infrastructure, ensuring alignment with organizational security strategies, and collaborate with cross-functional teams to support cryptographic protocols and security initiatives

Monitor PKI infrastructure for security threats and vulnerabilities, conduct regular assessments and audits to ensure compliance with industry standards, and troubleshoot and resolve PKI-related issues with escalation and SLA adherence

Document PKI architecture, processes, procedures, and strategic approaches, while creating and maintaining client knowledge articles, PKI Standard Operating Procedures (SOPs), architecture and scripts to ensure smooth operations and quick issue resolution, and develop procedures and documentation for continuous improvement and maintenance activities related to IAM solutions

Work closely with the Windows, Linux, Application Engineering, and Operations teams to support and integrate security into every level of the enterprise environment

Troubleshoot escalated issues, offer technical training, and assist with all PKI/Certificate related issues

Qualification

PKI solutions managementCertificate lifecycle managementArchitectural design implementationCloud security conceptsZero Trust principlesTechnical documentation writingTroubleshooting skillsProblem-solving skillsCommunication skillsInterpersonal skills

Required

Min 6 years with HS degree, 4 years with AS/AA degree, 2 years with BS/BA

DoD 8570 IAT II Certification

TS/SCI clearance or higher is required

Experience with architectural design and implementation

Strong experience deploying, managing, and administrating certificate lifecycle management tools

Familiarity with cloud security concepts and best practices, particularly in Gov AWS and Azure environments

Excellent problem-solving skills and ability to analyze complex systems and architectures

Strong communication and interpersonal skills, with the ability to effectively communicate technical concepts to non-technical stakeholders

Strong knowledge of government security requirements and compliance standards

Exceptional troubleshooting and problem-solving skills, with experience in performing root cause analysis

Preferred

Experience in programming languages such as Java, Python, or C++ is advantageous, and familiarity with cloud-based PKI solutions and their integration

Knowledge of Zero Trust principles, frameworks, and implementation strategies

Knowledge of Agile, ITSM, DevSecOps, and change management processes

Knowledge of modern IT infrastructure and emerging technologies

Experience in writing technical documentation