CAC/PKI SME

Clearance Level
Top Secret/SCI
Category
Systems Engineering
Location
Fort Huachuca, Arizona

REQ#: G2019-67373

GDIT is looking to hire a full-time CAC/PKI Senior Engineer to support the U.S. Army Network Enterprise Technology Command (NETCOM) contract located at Fort Huachuca AZ.  In this position, you will provide Common Access Card (CAC)/ Public Key Infrastructure (PKI) capability management engineering, testing, documentation, and system administration support in the NIPRNET, SIPRNET and Deployed Forces (DF) portion of the Department of Defense Information Network (DoDIN). Additionally, you will provide Tier III support for patches and updates, to include testing the baseline in the ITE to verify if these can be applied in the Army Enterprise Environment; as well as develop Enterprise Technical Procedures (ETPs), CONOPS, Test Plans, and Test Reports with the directions to apply the patches and upgrades. Overall, you will provide planning, design, development, engineering, integration, and technical and operational support to the ADCNOMS project.      

Previous experience in the following areas:

  • Online Certificate Status Protocol (OCSP) technologies, including Tumbleweed or CoreStreet; PKE of web technologies; PKE of Microsoft Active Directory; and Smartcard middleware technologies, including ActivClient or 90 Meter
  • CAC/PKI expertise, knowledge, skills
  • Active Directory, Active Client, Hardware Security Module (HSM), Online Certificate Status Protocol (OCSP), and Certificate Authority and smart card enablement
  • Microsoft Internet Information Services (IIS), Apache HTTP servers, smart card enablement and experience with the DoD CPR program and operational and troubleshooting experience with CPR workstations
  • CAC and CAC enabled Active Directory domains; virtualization technology
  • OCSP technologies and their operation within an enterprise setting
  • Microsoft Certification Authorities and hardware security modules
  • RA/LRA training Engineers to support TMS/ILS testing
  • RA DISA training per CNSS Instruction No. 1300 (to qualify as RA surge support)
  • Design and define system architecture for new or existing computer systems
  • Expertise and engineering support for certificate validation technologies such as, Microsoft OCSP; Axway Validation Suite; and CoreStreet Validation Suite
  • Engineering expertise and support on current Enterprise and Joint Environment architecture with particular focus on PKI and Identity Management aspects
  • Working in Army PKI and Joint Informational Environment (JIE) PKI environment

Qualifications/Certifications:

  • DoD 8570.1-M Certification: IAT Level III Certification
  • Computing Environment Certification, MCSE certification and RA and/or LRA training IAW Committee on National Security Systems (CNSS) Instruction No. 1300, Registration Practice Statement, Certification Practice Statement
  • 10+ years of experience in information technology field
  • BA/BS Degree
  • Current eligibility to hold Secret clearance

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.