Job Title: DV Cleared PKI Engineer
Location: Corsham
Duration: Initial contract until 31/03/2025 with likely extension
Rate: Up to £750-£850 per day via an approved umbrella company
Overview
The Public Key Infrastructure (PKI) Engineer is responsible for the administration, maintenance, and support to all the project domains' PKI, based around UK Defence and Microsoft Certificate Services.
The projects PKI Engineers are responsible for:
- Implementation of the Defence / Microsoft PKI certificate lifecycle management solution.
- Propose and implement improvements to the projects PKI solution in accordance with standard procedures and change control policies and procedures.
- Project manage the deployment of any new or uplifted/changed to the project PKI solutions and services.
- Implement changes to the PKI infrastructure in accordance with change control policies and procedures.
- Provide subject matter expertise, advice and guidance on matters relating to deployment and management of PKI services on deployed systems.
- Manage the authorisation, creation, distribution, use, secure storage and revocation of digital certificates within the deployed DPKI solution, ensuring it maintains alignment with all relevant client direction.
- Directly manage the project certification authorities, to ensure the timely creation and distribution of Certificate Revocation Lists (CRLs) in accordance with the defined timescales and actively engages with delivery teams to disable and remove revoked users and devices from the project operational domains.
- Attend Service Management meetings and Security Working Groups, providing service performance data and promoting an understanding of PKI and its implementation and use in deployed environments.
- Manage relationships with key stakeholder groups and end users to identify PKI requirements and develop requirements documentation.
- Support and author, where required, the generation and through life management of documentation that supports the continuing maintenance and upkeep of the PKI solutions delivered, and where necessary driving PKI management automation aimed at replacing manual processes.
- Alert the project Security Assurance Coordinator and IT Security Manager of unscheduled or rogue changes in the PKI, which may affect accreditation.
- Support technical discussions and meetings with suppliers and other stakeholders.
- Enforce technical assurance of DPKI to ensure secure delivery in compliance with Defence policy requirements, ie Joint Service Publications 440 and 604.
Essential skills, qualifications, and experience
- Current experience of operating within an information security domain, particularly Defence.
- Working knowledge of current PKI technologies, concepts, and their future direction.
- Recent experience of integrating PKI software and hardware components into customer systems.
- General understanding of cryptographic concepts: symmetric/asymmetric cryptography, secure hash, digital signatures.
- Knowledge of Microsoft and Defence PKI management and Administration (Certificate Services, CEPCES, NDES).
- Experience with certificate-enabled applications, such as SSL/TLS, authentication, IDAM, EFS, 802.1X, Code Signing, etc.
- Practical knowledge and in-depth working experience of MoD classified CIS, and a knowledge and understanding of its technical designs, its procedures/processes, and its security documentation, accreditation and security design aspects.
- Excellent written and verbal communication skills with an ability to assimilate, digest and present information from multiple sources.
- Must be able and willing to go through DV Clearance.
If this is the role for you please submit your CV at your earliest convenience. If you have not been contacted within 2 weeks please accept you have not been successful on this particular occasion.