SITEC - Senior PKI Architect - MacDill AFB jobs in United States
cer-icon
Apply on Employer Site
company-logo

Peraton · 2 months ago

SITEC - Senior PKI Architect - MacDill AFB

positionUS-FL-MacDill AFB
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$104K/yr - $166K/yr
date12+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a Senior Public Key Infrastructure (PKI) Architect to support the Special Operation Command Information Technology Enterprise Contract (SITEC) – 3, focusing on the design, management, and enhancement of global enterprise PKI services while providing Tier 3 systems support.

Information TechnologyRobotics
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead the full lifecycle management of critical IT services, including planning, deployment, maintenance, and optimization of the entire PKI infrastructure. Automate certificate provisioning, renewal, and revocation to reduce manual errors and expiration risk
Operate and maintain the PKI Authority across multiple security domains and operating systems. This includes daily management of Certificate Authorities (CAs), Online Certificate Status Protocol (OCSP) Servers, Hardware Security Modules (HSMs), Network Device Enrollment Services (NDES), and Active Directory Certificate Services (ADCS)
Manage and maintain PKI components across diverse platforms, including RedHat Linux (RHEL), Windows Server (2016, 2019, 2022, 2024), and virtual environments like vSphere. Ensure consistent platform-level authentication across Windows and Linux systems
Manage Red Hat-based CAs using tools like Dogtag PKI and oversee large-scale patching and configuration management with Red Hat Satellite and Ansible. Support containerized infrastructure using technologies such as Podman and manage X.509 certificates and private keys for RHEL system services
Enforce security policies and implement best practices for certificate management, including administrative tasks related to certificate issuance and revocation. Conduct regular vulnerability assessments and risk analyses on the PKI infrastructure
Provide Tier 3 support to mission partners, diagnosing and resolving complex system outages and performance issues to ensure optimal service uptime and operational capabilities, troubleshoot issues related to certificate expiration and related system outages
Ensure robust global smart card authentication and support advanced mobility platforms, including Hypori and MobileIron, to advance mission readiness
Configure and maintain various PKI-related tools and software, such as ISC Cert Agent Servers and Axway/Tumbleweed Certificate Revocation Software. Install and troubleshoot third-party Common Access Card (CAC) software
Use scripting languages like PowerShell, Bash, and Python to automate administrative tasks, optimize performance, and improve efficiency
Integrate PKI solutions with other systems, including Active Directory, cloud services, and Mobile Device Management (MDM) solutions. Implement new technologies to advance PKI capabilities
Provide training and mentorship to junior PKI Systems Administrators on standard configurations and PKI capabilities
Participate in working groups, design reviews, and system testing. Maintain strong technical writing skills to produce comprehensive documentation, including policies and operational procedures

Qualification

PKI expertiseRedHat LinuxWindows ServerScripting languagesAnsibleX.509 certificatesMicrosoft 365 CertificationTechnical writingMentorshipTeam collaboration

Required

Min 12 years with HS degree, 10 years with AS/AA degree, 8 years with BS/BA, 6 years with MS/MA, 3 years with PhD
DoD 8570 IAT II Certification
TS/SCI clearance is required
Minimum of 3 years of relevant IT experience, with a proven record of accomplishment in a senior or lead systems role
Minimum of 3 years of experience with RedHat Linux PKI suite and Hypori platforms
Significant experience managing production of Windows Servers and implementing enterprise-level security practices
Strong background in the design, implementation, and management of Microsoft Windows domains and PKI Infrastructure
Demonstrated proficiency in Microsoft Windows Server 2016/2019/2022/2024 and associated technologies
Expertise in PKI, including certificate template configuration, issuance, revocation, and troubleshooting
Proficiency with scripting languages, particularly PowerShell
Advanced scripting skills in Bash for automating PKI tasks, such as certificate issuance, renewal, and system configuration
Experience with Ansible or similar configuration management tools for managing and automating PKI and system configuration at scale
Proficiency in Python for more complex scripting tasks and integration with other systems
Generate and manage X.509 certificates and private keys for system services and their integration with certificate authorities
Install and troubleshoot third-party certificate software and integrate with certificate revocation software such as Axway

Preferred

MCSE (Microsoft Certified Expert)
Microsoft 365 Certified: Enterprise Administration Expert
Microsoft Certified Associate relevant to the work area

Benefits

Overtime
Shift differential
Discretionary bonus

Company

Peraton

twittertwitter
Glassdoor3.6
company-logo
Peraton Fearlessly solving the toughest national security challenges.
dateFounded in 1992
location
Woodbridge, New Jersey, USA
people-size10001+ employees
web-link
https://www.peraton.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Thomas Terjesen
Chief Information Officer
linkedin

Recent News

MarketScreener
Two bidders vie to be project manager of massive FAA US air traffic overhaul
2025-09-25
Benzinga.com
Snowflake Partners With Peraton, Builds AI Fraud Detection Tools To Protect Taxpayer Dollars
2025-09-17
NDTV
Donald Trump's Golden Dome Still Shrouded In Mystery, Even For Its Builders
2025-08-15
Company data provided by crunchbase