Job Title: DV Cleared PKI Engineer
Location: Corsham
Duration: Initial contract until 31/03/2025 with likely extension
Rate: Up to №£750-№£850 per day via an approved umbrella company
The Public Key Infrastructure (PKI) Engineer is responsible for the administration, maintenance, and support of all the project domains’ PKI, based around UK Defence and Microsoft Certificate Services.
Key Responsibilities:
* Implementation of the Defence/Microsoft PKI certificate lifecycle management solution.
* Propose and implement improvements to the project PKI solution in accordance with standard procedures and change control policies and procedures.
* Project manage the deployment of any new or uplifted/changed to the project PKI solutions and services.
* Implement changes to the PKI infrastructure in accordance with change control policies and procedures.
* Provide subject matter expertise, advice, and guidance on matters relating to deployment and management of PKI services on deployed systems.
* Manage the authorisation, creation, distribution, use, secure storage, and revocation of digital certificates within the deployed DPKI solution, ensuring it maintains alignment with all relevant client direction.
* Directly manage the project certification authorities, to ensure the timely creation and distribution of Certificate Revocation Lists (CRLs) in accordance with the defined timescales.
* Attend Service Management meetings and Security Working Groups, providing service performance data and promoting an understanding of PKI and its implementation and use in deployed environments.
* Manage relationships with key stakeholder groups and end users to identify PKI requirements and develop requirements documentation.
* Support and author, where required, the generation and through life management of documentation that supports the continuing maintenance and upkeep of the PKI solutions delivered.
* Enforce technical assurance of DPKI to ensure secure delivery in compliance with Defence policy requirements, ie Joint Service Publications 440 and 604.
Essential Skills and Experience:
* Current experience of operating within an information security domain, particularly Defence.
* Working knowledge of current PKI technologies, concepts, and their future direction.
* Recent experience of integrating PKI software and hardware components into customer systems.
* General understanding of cryptographic concepts: symmetric/asymmetric cryptography, secure hash, digital signatures.
* Knowledge of Microsoft and Defence PKI management and Administration (Certificate Services, CEPCES, NDES).
* Experience with certificate-enabled applications, such as SSL/TLS, authentication, IDAM, EFS, 802.1X, Code Signing, etc.
* Practical knowledge and in-depth working experience of MoD classified CIS, and a knowledge and understanding of its technical designs, its procedures/processes, and its security documentation, accreditation, and security design aspects.
* Excellent written and verbal communication skills with an ability to assimilate, digest, and present information from multiple sources.
* Must be able and willing to go through DV Clearance.