Network Security Manager - PKI

Architecture, Development, Disaster Recovery, Hardware, Manager, Management, Networks, Security, Supervision, Unix, Validation, Windows
Full Time, Full-Time/Regular
Telecommuting not available Travel not required

Job Description


Smartronix, Inc., is an information technology and engineering solutions provider specializing in Cloud Computing, Cyber Security, Health IT, Network Operations, and Mission-Focused Engineering. We are seeking a Network Security Manager (PKI) to join our MCCOG team to help us support the United States Marine Corps in Quantico, VA.

The Network Security Manager (PKI) provides technical expertise related to the support of concept exploration, functional and technical requirement generation, and development, implementation, and enhancement of DoD PK Infrastructure for the Marine Corps. Technical support includes the development of a technically resilient certificate revocation status checking infrastructure for all MCEN networks, as well as meeting the requirements of HSPD-12. It ensures that USMC PKI implementation requirements are identified and made part of the development, implementation, and support of the DoD PKI Increment 2 architecture.

MCCOG PKI provides support for assessments of USMC impacts from actions associated with DoD PKI PMO development and implementation activities which includes the use of DoD PKI with mobile devices and DoD provided non-person entity issuance capabilities. It also provides support to address issues related to certificates, tokens, token issuance, and infrastructure services.

This task provides support to directory service providers and recommendations for USMC action to change DoD implementation and software releases. Recommendations shall also include the impact of planned changes to registration software and hardware upon USMC users.

The Network Security Manager (PKI) provides technical supervision and guidance for all PKI NetOps system management tasks supporting the MCCOG.

The Network Security Manager (PKI) should be able to demonstrate the following knowledge and/or experience:
o In depth experience providing Tier III or higher support for PKI services
o Expert knowledge of PKI and collaboration technologies similar to those in use by the
USMC
o Substantial experience operating and maintaining Certificate Authorities and Certificate
validation infrastructures.
o System design and engineering experience with focused experience developing and
implementing PKI system's similar to those maintained and delivered by the MCCOG
o Excellent written and verbal communication skills, and have experience effectively
presenting material to senior DoD and non-DoD officials
o Managerial experience in a C4 environment directing 10 or more technical staff
members.
o Experience evaluating and implementing emerging industry-standard PKI Technologies
o Experience incorporating emerging technologies into existing environments

Required Skills
The Network Security Manager (PKI) should be able to demonstrate the following knowledge and/or experience:

1. Certificate Authority(CA) Support

The Network Security Manager (PKI) will use their active directory experience, direct DoD PKI experience, Unix and Windows software, Microsoft and Red Hat CA software knowledge and experience to provide CA support:

+ Develop, deploy and configure new CA Infrastructure
+ Maintain the overall health of technologies associated with the CA infrastructure.
+ Monitor the health of CA infrastructure with MCNOSC provided event management tools.
+ Publish and issue Certificate Revocation Lists on a weekly basis from Offline and Sub CAs.
+ Provide Tier III troubleshooting and support for incidents related to CAs and document resolution using incident ticketing system.
+ Implement and monitor CA thresholds and conduct proactive event remediation per Government guidance.
+ Develop, plan, deploy, and configure new versions of CA Infrastructure as needed or when directed by Government leadership.
+ Develop, test, and maintain CA Infrastructure disaster recovery plans .
+ Develop, test, and maintain CA Infrastructure COOP plans .
+ Escalate issues to third party product vendors as required and track the progress of vendor support.

2. Certificate Validation Infrastructure (CVI) Support

The Network Security Manager (PKI) will use their PKI, Windows Software knowledge, and Axway Validation Authority Suite software to include but not limited to OCSP, Desktop Validator, Enterprise Validation Authority, and Compact CRLs experience to provide CVI support.

The Network Security Manager (PKI) shall:

+ Configure and deploy new Certificate Validation (Responder/Repeater) software as needed or directed by Government leadership.
+ Develop, deploy and maintain desktop validator configurations for use by all systems and applications residing on all USMC networks.
+ Conduct infrastructure checks twice daily and create status report.
+ Maintain the overall health of technologies associated with the Certificate validation infrastructure.
+ Monitor the health of CVI with MCNOSC provided event management tools.
+ Ensure validation information, downloaded from DISA, is current and accessibleby CVI servers.
+ Provide Tier III troubleshooting and support for incidents related to CVI and document resolution using incident ticketing system.
+ Configure and deploy new versions of CVI as needed or when directed by Government leadership.
+ Develop, test, and maintain CVI disaster recovery plans.
+ Develop, test, and maintain CVI COOP plans.
+ Escalate issues to third party product vendors as required and track the progress of vendor support.

3. Hardware Security Module Support:

The Network Security Manager (PKI) shall use their PKI, Windows software knowledge, and SafeNET and nCipher hardware experience to provide Hardware Security Module (HSM) support to provide PKI certificate services.

The Network Security Manager (PKI) shall:

+ Configure and deploy new HSMs as required or directed by Government leadership
+ Maintain the overall health of the HSMs. Provide Tier III troubleshooting and support for incidents related to HSMs and document resolution using incident ticketing system.
+ Develop, test, and maintain HSM disaster recovery plans.
+ Escalate issues to third party product vendors as required and track the progress of vendor support.

Required Experience
8 years experience of which 4 must be direct PKI Experience.

Job Location
Quantico, Virginia, United States

Position Type
Full-Time/Regular

US Citizenship Required
Yes
Degree Required
N/A
Clearance Level Required
04. Secret

Dice Id : 10102108
Position Id : 2047
Have a Job? Post it