Enterprise IT Systems Engineer (PKI/ICAM)

Empower AI Inc.

  • Arlington, VA
  • Permanent
  • Full-time
  • 8 days ago
Overview:Empower AI is AI for government. Empower AI gives federal agency leaders the tools to elevate the potential of their workforce with a direct path for meaningful transformation. Headquartered in Reston, Va., Empower AI leverages three decades of experience solving complex challenges in Health, Defense, and Civilian missions. Our proven Empower AI Platform® provides a practical, sustainable path for clients to achieve transformation that is true to who they are, what they do, how they work, with the resources they have. The result is a government workforce that is exponentially more creative and productive. For more information, visit .Empower AI is proud to be recognized as a 2024 Military Friendly Employer by Viqtory, the publisher of G.I. Jobs. This designation reflects the company’s commitment to hiring and supporting active-duty and veteran employees. Responsibilities:As the Enterprise IT System Engineer (PKI/ICAM) (Shared), you will be responsible for designing and implementing the end-to-end Public Key Infrastructure (PKI) systems solutions that meet the organization's Identity, Credential and Access Management (ICAM) objectives and DoD’s (Defense Intelligence Agency (DIA)) Authority To Operate (ATO) requirements. The ideal candidate will have a strong background in DoD PKI and ICAM system architecture and requirements, a deep understanding of technology trends, and the ability to collaborate with cross functional teams to deliver scalable and reliable systems. You will act as a model of customer service excellence to all organizational staff members in the Office of Military Commissions (OMC) as part of DISA’s Joint Service Provider (JSP) Service Delivery contract and support multiple organizations within OMC as a shared resource in locations within the National Capital Region (NCR) and as needed, Naval Station Guantanamo Bay (NSGB). You will participate with other task IT professionals, to provide all services from end user training to Tier 3 support for the PKI/ICAM system solution. Further, you will participate in the planning and implementing other key OMC IT initiatives anticipated during this effort. Although this position resides in the NCR, there may be a requirement to travel to Naval Station Guantanamo Bay (NSGB) occasionally. In assuming this position, you will be a critical contributor to meeting Empower AI's mission: To deliver innovative, cost-effective solutions and services that enable our customers to adapt to dynamic environments rapidly.Responsibilities:System Design and Architecture:
  • Lead E&I (engineering and implementation) efforts for the design, creation, proposal, and engineering of enterprise level PKI/ICAM IT Solutions for the OMC IT environment. This includes all solutions for NIPR/SIPR/JWICS and SAP security environments. This includes but is not limited to infrastructure, network, security, data storage, centralized management, server scoping, and configurations that enhance the OMC end-user experience.
  • Assist in developing a comprehensive Microsoft Domain and Active Directory system architectures that align with business goals and requirements on VMware Virtualization Technologies.
  • Assist in designing and implementing secure solutions that ensure scalability, reliability, and optimal performance.
  • Will perform duties as the PKI/ICAM SME for the implementation tasks designated by the Program Manager.
  • Function as the PKI/ICAM SME responsible for developing, implementing, and configuring OMC system Infrastructure across multiple locations, operating a broad range of Microsoft Server technologies including PKI and digital certificates management systems, ensuring proper issuance, renewal, and revocation processes.
  • Provide support for Network Attached Storage (NAS) with an included Storage Area Network (SAN) and encrypted file storage capabilities (NetApp).
  • Provide expert level support for troubleshooting PKI/ICAM system related issues, including root cause analysis and resolution.
Technology Evaluation and Selection:
  • Assess and recommend technologies and tools that best meet the organization's technical and business needs.
  • Stay current with emerging technologies and industry trends to inform technology selection decisions.
Collaboration and Communication:
  • Collaborate with stakeholders, including: vendors, Value-Added Resellers (VARs) developers, engineers, security managers and business leaders, to understand requirements and constraints.
  • Communicate architectural decisions and rationale to both technical and nontechnical audiences.
Integration and Interoperability:
  • Design systems that integrate seamlessly with existing applications and infrastructure.
  • Ensure interoperability with third-party systems and services.
Security and Compliance:
  • Incorporate security principles into system designs to safeguard against potential threats.
  • Ensure that systems comply with DoD regulations and security standards.
  • Conduct regular reviews to ensure that solutions adhere to established architectural and security guidelines.
  • Ensure OMC Enterprise PKI/ICAM solutions meet ATO requirements for the security environment.
  • Enforce OMC PKI/ICAM security policies and procedures to protect systems and data.
Documentation:
  • Create and maintain detailed documentation of PKI/ICAM system architectures, configurations, processes, Standard Operating Procedures (SOPs) and end user instructions.
  • Will utilize Government approved tools to accurately report, document, administer the PKI/ICAM solution.
  • Government-provided tools include, but are not limited to, the following:
(1) Service Now (SNOW) for ticket submission, tracking, and routing.(2) Microsoft SharePoint as a knowledge management repository for SOP’s
  • Provide documentation to support training and knowledge transfer activities.
Qualifications:Requirements:
  • Shall possess at the time of award a TOP SECRET w/ SCI Eligible security clearance.
  • Proven experience as a PKI/ICAM and Systems Architect or in a similar role.
  • In-depth knowledge of system architecture principles, design patterns, and best practices (primarily Windows-based, some Linux-based).
  • Proficiency in PKI/ICAM system design and architecture modeling tools.
  • Strong analytical and problem-solving skills.
  • Strong understanding of security principles, risk management, and compliance frameworks.
  • Familiarity with virtualization technologies (e.g., VMware, HyperV).
  • Experience with designing, engineering, and implementing a PKI/ICAM solution.
  • Excellent communication and interpersonal skills.
  • Highly self-motivated and directed.
Education and Experience:
  • Bachelor's degree in Computer Science, Information Technology, or a related field. Master's degree preferred.
  • 10+ years of DoD System Engineering Experience
  • 7+ years of experience leading or working tasks of a similar size/scope
  • 5+ years working in a Virtualized environment for either DOD or the IC
  • Required Certifications:
  • MCSE Core Infrastructure or Azure Solutions Architect Expert Certification
  • VMware Certified Professional
  • DoD8570.01M IAT Level II (one of the following):
  • CCNA Security
  • CySA+
  • GICSP
  • GSEC
  • CND
  • Security + CE
  • Preferred Certifications:
  • DoD8570.01M IAT Level III (one of the following)
  • CASP+ CE
  • CCNP Security
  • CISA
  • CISSP (or Associate)
  • GCED
  • GCIH
  • VCP Data Virtualization or End User Computing
About Empower AI:All hiring and promotion decisions at Empower AI are based on merit to bring the best talent available to contribute to our firm’s overall success. It is the policy of Empower AI not to discriminate against any applicant for employment, or employee because of age, color, sex, disability, national origin, race, religion, or veteran status. Empower AI is a VEVRAA Federal Contractor.

Empower AI Inc.