Senior PKI Engineer chez SAIC

The Senior PKI Engineer will support implementation and design of DOT’s refresh solution, KeyFactor, and The candidate will support implementation and design services for Microsoft Active Directory certificate services and KeyFactor. The candidate will serve as subject matter expert for PKI, smart card authentication, and identity services for the Active Directory Services Team for on-premises Active Directory, and Entra ID. The candidate will provide support for Windows-based systems across the enterprise, including directory and identity management solutions. Resolves and appropriately completes assigned tasks and change requests and acts as an escalation for support issues. Applies new solutions through research and collaboration with team and determines course of action for new application initiatives. Implements new software solutions as required by the business. The core infrastructure technology duties include enterprise Microsoft Active Directory, Microsoft Certificate Services, policy configuration, and top-level support for enterprise-wide initiatives.

Job Description and Duties

• Fulltime onsite requirement at DOT HQ, Washington DC.

• Once every 2-3 months support server infrastructure in a 24x7 on-call escalation capacity as part of a team rotation.

• Performs day-to-day activities required to assist and identify technology solutions that meet enterprise requirements. 

• Maps functional requirements into technological requirements and identifies technologies that meet the technological requirements.  

• Conducts proof of concept, pilots and demos for the purposes of evaluating the suitability of given technologies for meeting requirements.  

• Evaluates the tradeoffs between competing solutions and develops quantitative driven analysis of alternatives.

• Produces written analysis of research and recommendation papers that clearly describe the process followed, alternatives considered, evaluation criteria and rationale for recommendation and need for improvement.

• Provide enterprise-level support for Active Directory for global initiatives following those through to implementation via collaboration with project and support teams.
• Lead point of contact for certificate services including issuances, renewals, and management functions; maintain Certificate life-cyle and on-demand and periodic reporting on enterprise and solution certificate status.
• Research, evaluate, and provide solution recommendations for current PKI capability and opportunities for enhancements.
• Support engineering, design, implementation, and operations support of PKI-solution.
• Serves as escalation point for PKI and active directory support and troubleshooting, provides guidance and direction in resolution of escalated issues and/or complex production, application, or system problems.
• Create and maintain system documentation for domain and PKI technologies, including installation, configuration, and appropriate troubleshooting steps.
• Improve existing processes through solutions to recurring problems and enhancements to existing solutions or documentation.
• Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems, and key processes, reviewing system and application logs, and verifying completion of scheduled jobs.
• Install, configure, and maintain Active Directory and third-party software utilities for hardware systems within company operational guidelines.
• Create and maintain system documentation for domain technologies, including installation, configuration, and appropriate troubleshooting steps.
• Improve existing processes through solutions to recurring problems and enhancements to existing solutions or documentation.
• Provide training as required.
• Maintain and update environmental documentation, standard Operating Procedures, and engineering documentation.
• Collaborate with Lead to identify, assess, and present solution options for meeting the functional and technical requirements, which may include hardware and/or software.
• Performs security hardening, patching and server certificate updates.
• Develops documentation for System Installation Plans and System Administration Guide.
• Perform other tasks as directed by Lead Engineers or Project Manager.

%3Cp class=%22MsoNormal%22 style=%22-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:%26quot;Open Sans%26quot;, %26quot;Segoe UI%26quot;, Frutiger, %26quot;Frutiger Linotype%26quot;, %26quot;Dejavu Sans%26quot;, %26quot;Helvetica Neue%26quot;, Arial, sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0px 0px 12px;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3E%3Cstrong%3ERequired Education and Experience:%3C/strong%3E%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/p%3E%3Cul style=%22-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:%26quot;Open Sans%26quot;, %26quot;Segoe UI%26quot;, Frutiger, %26quot;Frutiger Linotype%26quot;, %26quot;Dejavu Sans%26quot;, %26quot;Helvetica Neue%26quot;, Arial, sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0in 0px 12px;orphans:2;padding:0px 0px 0px 20px;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;%22 type=%22disc%22%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22font-family:Arial, Helvetica, sans-serif;font-size:18px;%22%3E%3Cspan style=%22line-height:107%;mso-ansi-language:EN-US;mso-bidi-language:AR-SA;mso-fareast-font-family:%26quot;Times New Roman%26quot;;mso-fareast-language:EN-US;%22%3EMust have a minimum of 8 years of related experience providing business solutions engineering support, to include architectural design, engineering design, proof of concept development, pilots, analysis, results, and documentation.%26nbsp;%3C/span%3E%3C/span%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EMust have extensive knowledge of multi-vendor server operating systems.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EMust have extensive experience and expertise with KeyFactor including implementation, operations, and maintenance.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EMust have knowledge of multiple certificate technologies including Entrust/Sectigo, SSL.com, DigiCert, etc.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EDemonstrated experience in all aspects of enterprise Windows environment operations and maintenance (O%26amp;M) and engineering.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EActive Directory architecture and management [expert-level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EPKI, HSM’s, PIV cards, Smart Cards [expert-level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EMulti-Factor Authentication- Active Directory Federation Services (ADFS), SAML, SSO [expert-level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EKnowledge in creating, administering, and troubleshooting Group Policies (GPOs) [expert-level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EWindows Certificates Services Management [expert-level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EScripting Experience: PowerShell and VBScript, and/or other scripting experience [senior level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EWindows Server Operating Systems (Server 2016 to 2022) [expert-level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EDevelops security standards and controls per DISA STIGS and CISA requirements [senior level].%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EExperience with performing root cause analysis, risk identification, and risk mitigation.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EInterpersonal skills including the ability to collaborate effectively.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EDemonstrated experience in a fast tempo ITSM support environment.%3C/span%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3E%3Ci%3EU.S. citizen or green card holder who has resided in the U.S. for at least 3 years and the ability to obtain a public trust.%3C/i%3E%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3C/ul%3E%3Cp class=%22MsoNormal%22 style=%22-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:%26quot;Open Sans%26quot;, %26quot;Segoe UI%26quot;, Frutiger, %26quot;Frutiger Linotype%26quot;, %26quot;Dejavu Sans%26quot;, %26quot;Helvetica Neue%26quot;, Arial, sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0px 0px 12px;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3E%3Cstrong%3EPreferred skills and qualifications:%3C/strong%3E%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/p%3E%3Cul style=%22-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:%26quot;Open Sans%26quot;, %26quot;Segoe UI%26quot;, Frutiger, %26quot;Frutiger Linotype%26quot;, %26quot;Dejavu Sans%26quot;, %26quot;Helvetica Neue%26quot;, Arial, sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0in 0px 12px;orphans:2;padding:0px 0px 0px 20px;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;%22 type=%22disc%22%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EExpert level experience with Azure Active Directory.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EMicrosoft Certification(s) including Windows Server Hybrid Administrator Associate, Endpoint Administrator Associate, Azure Fundamentals, Azure Administrator Associate, MS365 Certified Administrator Expert, MCSE/MCSA (retired).%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3ECloud certification including AWS/Azure Solution Architect, AWS SysOps Administrator.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EAnsible experience is a plus.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EAny additional professional IT or Project Management certifications.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EKnowledge of KeyFactor-PKI preferred.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EKnowledge of SailPoint and/or CyberArk preferred.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3C/li%3E%3Cli class=%22MsoNormal%22 style=%22color:rgb(0, 0, 0);line-height:1.25;%22%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3EStrong experience with Windows Failover Clustering, and HA/DR planning and execution.%3C/span%3E%3Co:p%3E%3C/o:p%3E%3Cspan style=%22color:rgb(0,0,0);font-family:arial, helvetica, sans-serif;font-size:18px;%22%3E%3Ci%3ECandidate must be a%26nbsp;%3C/i%3E%3C/span%3E%3C/li%3E%3C/ul%3E
*!SAIC accepts applications on an ongoing basis and there is no deadline.

SAIC® is a premier Fortune 500® mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.

We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.5 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. Postuler maintenant