Linux PKI Enterprise Systems Engineer
Koitecc Solutions, Huntsville, AL, United States
About Us:
Leidos is a leader in IT Cybersecurity industry, dedicated to providing secure and innovative solutions to our global client base. Our engineering team is paramount to our success, ensuring the confidentiality, integrity, and availability of our systems and data. We are looking for a seasoned expert to join our team and take a leading role in shaping our PKI landscape.
Position Overview:
We are seeking a highly skilled and experienced Senior Linux PKI Engineer with experience in Linux and Windows Virtualization platforms to join our dynamic Engineering team. The ideal candidate will be a subject matter expert in Public Key Infrastructure with a strong background in Linux systems. This role is responsible for the design, implementation, and maintenance of our enterprise‑wide PKI solutions. You will play a critical role in the security of our digital communications and transactions, ensuring robust and reliable certificate management across our entire infrastructure. This role operates within large‑scale, geographically distributed environments supporting high‑availability and mission‑critical systems.
Key Responsibilities:
Architect and Design: Lead the design and architecture of a scalable, resilient, and secure PKI infrastructure.
Implementation and Management: Deploy, configure, and manage all aspects of the PKI environment, including Certificate Authorities (CAs), Registration Authorities (RAs), and Hardware Security Modules (HSMs).
Automation: Develop and maintain automation scripts (using Python, Bash, or similar) to streamline certificate lifecycle management, including issuance, renewal, and revocation.
Linux System Administration: Manage and maintain the underlying Linux‑based systems hosting the PKI services, ensuring high availability and performance.
HSM Management: Administer and maintain Hardware Security Modules (HSMs) to ensure the security of cryptographic keys.
Policy and Governance: Develop, implement, and enforce PKI policies, standards, and procedures.
Compliance and Accreditation: Support RMF (Risk Management Framework) processes, ensuring PKI systems align with STIG requirements, security controls, and accreditation standards. Assist with auditing activities and provide artifacts/evidence for system authorization.
Troubleshooting: Serve as the highest level of escalation for complex PKI‑related issues.
Collaboration: Work closely with application, network, and other infrastructure teams to integrate PKI and provide certificate management solutions.
Mentorship: Provide guidance and mentorship to junior engineers and other team members.
Stay Current: Keep abreast of the latest PKI technologies, standards, and security threats to continually improve our security posture.
Basic Qualifications:
Experience: 8+ years of experience in IT with at least 5 years in a dedicated PKI engineering role.
Education: Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
PKI Expertise: In‑depth knowledge of PKI concepts, including X.509, certificate lifecycle management, CRL, OCSP, and SCEP.
Linux Proficiency: Extensive hands‑on experience with Linux administration (RHEL, CentOS, or similar), including system hardening and performance tuning.
Scripting Skills: Strong proficiency in at least one scripting language, such as Python, Bash, or Perl, for automation and integration.
HSM Experience: Proven experience with managing and integrating Hardware Security Modules (e.g., Thales, Entrust, nCipher).
PKI Platforms: Hands‑on experience with enterprise‑grade PKI platforms (e.g., EJBCA, PrimeKey, Venafi, or Microsoft CA).
Networking: Solid understanding of network protocols and security, including TCP/IP, TLS/SSL, and SSH.
Compliance Frameworks: Experience supporting RMF, STIG implementation, and security compliance in regulated or classified environments, including participation in audits and accreditation processes.
US citizenship and active DoD Secret clearance required.
Required Certifications:
Certifications: Red Hat Certified Engineer (RHCE), or VMware Certified Professional (VCP), or an Advanced MS Server level certification.
Preferred Skills:
Certifications: Professional certifications such as CISSP, RHCE, or specific PKI vendor certifications are highly desirable.
DevOps: Familiarity with DevOps practices and tools (e.g., Ansible, Puppet, Chef, Terraform).
Containerization: Experience with container technologies like Docker and Kubernetes.
Large-Scale Environments: Experience managing PKI in a large, complex, and geographically distributed enterprise environment.
Enterprise Scale: Experience supporting PKI in large-scale, geographically distributed environments with high‑availability and mission‑critical requirements.
Pay and benefits are fundamental to any career decision. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.
Pay Range: $107,900.00 – $195,050.00.
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
#J-18808-Ljbffr
Leidos is a leader in IT Cybersecurity industry, dedicated to providing secure and innovative solutions to our global client base. Our engineering team is paramount to our success, ensuring the confidentiality, integrity, and availability of our systems and data. We are looking for a seasoned expert to join our team and take a leading role in shaping our PKI landscape.
Position Overview:
We are seeking a highly skilled and experienced Senior Linux PKI Engineer with experience in Linux and Windows Virtualization platforms to join our dynamic Engineering team. The ideal candidate will be a subject matter expert in Public Key Infrastructure with a strong background in Linux systems. This role is responsible for the design, implementation, and maintenance of our enterprise‑wide PKI solutions. You will play a critical role in the security of our digital communications and transactions, ensuring robust and reliable certificate management across our entire infrastructure. This role operates within large‑scale, geographically distributed environments supporting high‑availability and mission‑critical systems.
Key Responsibilities:
Architect and Design: Lead the design and architecture of a scalable, resilient, and secure PKI infrastructure.
Implementation and Management: Deploy, configure, and manage all aspects of the PKI environment, including Certificate Authorities (CAs), Registration Authorities (RAs), and Hardware Security Modules (HSMs).
Automation: Develop and maintain automation scripts (using Python, Bash, or similar) to streamline certificate lifecycle management, including issuance, renewal, and revocation.
Linux System Administration: Manage and maintain the underlying Linux‑based systems hosting the PKI services, ensuring high availability and performance.
HSM Management: Administer and maintain Hardware Security Modules (HSMs) to ensure the security of cryptographic keys.
Policy and Governance: Develop, implement, and enforce PKI policies, standards, and procedures.
Compliance and Accreditation: Support RMF (Risk Management Framework) processes, ensuring PKI systems align with STIG requirements, security controls, and accreditation standards. Assist with auditing activities and provide artifacts/evidence for system authorization.
Troubleshooting: Serve as the highest level of escalation for complex PKI‑related issues.
Collaboration: Work closely with application, network, and other infrastructure teams to integrate PKI and provide certificate management solutions.
Mentorship: Provide guidance and mentorship to junior engineers and other team members.
Stay Current: Keep abreast of the latest PKI technologies, standards, and security threats to continually improve our security posture.
Basic Qualifications:
Experience: 8+ years of experience in IT with at least 5 years in a dedicated PKI engineering role.
Education: Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
PKI Expertise: In‑depth knowledge of PKI concepts, including X.509, certificate lifecycle management, CRL, OCSP, and SCEP.
Linux Proficiency: Extensive hands‑on experience with Linux administration (RHEL, CentOS, or similar), including system hardening and performance tuning.
Scripting Skills: Strong proficiency in at least one scripting language, such as Python, Bash, or Perl, for automation and integration.
HSM Experience: Proven experience with managing and integrating Hardware Security Modules (e.g., Thales, Entrust, nCipher).
PKI Platforms: Hands‑on experience with enterprise‑grade PKI platforms (e.g., EJBCA, PrimeKey, Venafi, or Microsoft CA).
Networking: Solid understanding of network protocols and security, including TCP/IP, TLS/SSL, and SSH.
Compliance Frameworks: Experience supporting RMF, STIG implementation, and security compliance in regulated or classified environments, including participation in audits and accreditation processes.
US citizenship and active DoD Secret clearance required.
Required Certifications:
Certifications: Red Hat Certified Engineer (RHCE), or VMware Certified Professional (VCP), or an Advanced MS Server level certification.
Preferred Skills:
Certifications: Professional certifications such as CISSP, RHCE, or specific PKI vendor certifications are highly desirable.
DevOps: Familiarity with DevOps practices and tools (e.g., Ansible, Puppet, Chef, Terraform).
Containerization: Experience with container technologies like Docker and Kubernetes.
Large-Scale Environments: Experience managing PKI in a large, complex, and geographically distributed enterprise environment.
Enterprise Scale: Experience supporting PKI in large-scale, geographically distributed environments with high‑availability and mission‑critical requirements.
Pay and benefits are fundamental to any career decision. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.
Pay Range: $107,900.00 – $195,050.00.
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
#J-18808-Ljbffr