C002370 Engineer (IdM/PKI Services) (NS) - MON 7 Nov Relaunch
Mons, Wallonia, Belgium
Deadline Date: 07-NOV-2022
Requirement Title: Engineer (IdM/PKI Services)
Location: Mons, BE
Full time on-site: Yes
NATO Grade: A/88
Total Scope of the request (hours): 570
Required Start Date: 05-DEC-2022
End Contract Date: 31-DEC-2022
Required Security Clearance: NATO Secret
Duties and Role
- Manage the NATO wide NPKI Registration Authorities;
- Maintain the day-to-day NATO wide PKI systems and components;
- Manage and control of the lifecycle of end users and devices certificates;
- Manage NPKI virtualize infrastructure;
- Manage NPKI networking components;
- Manage NPKI hardware infrastructure;
- Manage the NPKI LDAP directory service and support HTTP service;
- Responsible for the NCIA ITSM ticketing system;
- Responsible for WNES- auto enrolment service, CSR SCEP; Enrolment over Secure Transport (EST); Entrust Administration Services components especially in context of ITM and NPKI-Mitigation projects new services development and deployment;
- Responsible for Enterprise Mobile Mobility configuration, integration, maintenance;
- Responsible for LDAP directory service configuration and maintenance;
- Responsible for Online Certificate Status Protocol (OCSP) and Time Stamp management;
- Responsible for Database maintenance, dedicated for NPKI;
- Responsible Card Management System deployment, integration and day-to-day management;
- Responsible for Hardware Security Module (HSM) firmware upgrade and management in different Date Centre location;
- Responsible for the creation of PKI related guidance;
- Certificate Authority Log analysis, (Troubleshoot the system ALARM/ERRORS and monitor user activity);
- Support Smart Card enrolment and certificate creation process;
- Maintain the day-to-day operations /management /backup/restore of the PKI systems;
- Provide technical support and assistance to ITM Operating Authorities and NPKI-Mitigation project team;;
- Provide 2nd and 3rd level technical support of CIS services to the NPKI customers;
- Designing of new PKI components;
- Responsible for the creation and maintenance of Standard Operating Procedures within the NPKI as part of modifications or additions to current capabilities;
- Documenting of all new PKI services;
- Installation and maintenance of NPKI components;
- Be flexible to work outside normal office hours in response to Duties & Role: crises, operational requirements;
- Performs other duties as may be required.
Requirements
- NATO Secret Security Clearance
- A university degree in a relevant discipline and 3 years of specific experience
- Extensive knowledge of modern communication and Internet Protocol (IP) based networking technologies and systems including security aspects.
- 3 years extensive experience with PKI System development, design, management.
- Extensive knowledge of Information security and Cryptography (symmetric and asymmetric encryption, public key infrastructure (PKI) encryption, public key encryption, hash functions, digital signatures, digital certificates).
- Working knowledge of router and switches configuration.
- Practical experience in Windows Servers, RHEL and VMware system administration.
- Knowledge of the principles of computer and communications security, networking, and vulnerabilities of modern operating systems and applications.
- Experience with SQL database administration.
- Extensive experience in operating systems backup and restore.
- Practical experience in scripting (Python, Powershell).
- Practical experience in SSL, TLS, and OpenSSL.
Desirable Experience:
- VMware (VCA, VCP) and Linux RHEL system administration
- CISCO CCNA
- Microsoft Certified Solution Associate (MCSA).
- Microsoft Certified Solutions Expert (MCSE).
- Experience in development and implementation of computer security policies.
Tags: Clearance Cryptography Encryption LDAP Linux Log analysis NATO PKI PowerShell Python Scripting Security Clearance SQL TLS VMware Vulnerabilities Windows
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs