CrawlJobs Logo

Cybersecurity PKI Systems Administrator

united-its.com Logo

United ITs

Location Icon

Location:
Spain; Italy , Valencia

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Responsibility:

  • Manage and operate certificate lifecycle management processes, including issuance, renewal, revocation, replacement, auditing, and compliance tracking
  • Integrate, configure, and maintain Certificate Management Systems (CMS) and enterprise‑wide enrollment services
  • Implement and maintain automation workflows for certificate management using ACME and other certificate automation protocols
  • Operate and maintain PKI environments across hybrid cloud and on‑prem infrastructures, including Microsoft CA, EJBCA, and other open‑source or commercial PKI systems
  • Manage Hardware Security Modules (HSMs), including key generation, protection, rotation, backup, and secure handling of cryptographic materials
  • Support Identity Providers (IdPs) and authentication frameworks, enabling secure integration with SSO, MFA, federation protocols (SAML, OIDC, OAuth2), and certificate‑based authentication
  • Manage and enhance auto‑enrollment mechanisms for certificates on servers, devices, applications, and user endpoints
  • Develop automation scripts (PowerShell, Python) for certificate deployment, renewal workflows, system integrations, and reporting
  • Support secure onboarding/offboarding of services requiring certificates, ensuring proper identity binding, policy enforcement, and trust‑chain validation
  • Understand and manage interactions with public Certification Authorities (CAs), including validation processes (DCV/OV/EV), documentation handling (CSRs, legal/organization proofs), issuance tracking, and compliance with CA/B Forum and vendor requirements
  • Assist security operations by providing PKI expertise for incident response, including mis‑issuance, certificate‑related outages, or key compromise scenarios
  • Maintain documentation of PKI architectures, baselines, approval workflows, system configurations, key ceremonies, and operational procedures to ensure consistency and business continuity
  • Provide support for internal and external audits, including preparation of evidence related to certificate usage, access control, cryptographic operations, and compliance posture
  • Contribute to the development of training and awareness materials to strengthen organizational understanding of PKI, secure authentication, and certificate management

Requirements:

  • Strong understanding and hands‑on experience with federation protocols (SAML, OAuth2, OIDC), SSO models, IdP integrations, and identity brokering
  • In‑depth knowledge of Multi‑Factor Authentication (MFA) and certificate‑based authentication workflows, including integration with enterprise identity platforms
  • Extensive experience with certificate‑based authentication, encryption, digital signatures, and secure identity binding across enterprise environments
  • Solid experience with PKI and certificate management systems such as EJBCA, Microsoft CA, and public Certification Authorities (Entrust, DigiCert, Sectigo), including validation processes (DCV/OV/EV) and associated documentation
  • Strong knowledge of certificate lifecycle management, including issuance, renewal, revocation, CRLs/OCSP, enrollment protocols, trust‑chain validation, and policy enforcement
  • Practical experience with certificate automation protocols, including ACME and other automated enrollment mechanisms
  • Proficiency in scripting and automation (PowerShell, Python, Bash) for certificate workflows, integrations, monitoring, and lifecycle orchestration
  • Experience with Hardware Security Modules (HSMs) for secure key generation, lifecycle management, storage, and cryptographic operations
  • Familiarity with Zero Trust principles relevant to identity assurance and certificate‑driven access control
  • Excellent communication, collaboration, and documentation skills
  • Ability to work independently, proactively report progress, and operate with minimal supervision

Nice to have:

  • Experience with authentication and authorization processes that integrate certificate‑based access models (e.g., policy‑driven access, EKUs/Key Usage constraints, smartcard/PIV workflows)
  • Familiarity with credential vaulting or access control tools, such as CyberArk, in contexts where certificates or cryptographic keys are used for authentication

Additional Information:

Job Posted:
March 20, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
United ITs - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Cybersecurity PKI Systems Administrator

Cybersecurity PKI Systems Administrator

Location
Location
Spain , Valencia
Salary
Salary:
Not provided
united-its.com Logo
United ITs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in configuring and managing Cloudflare security services, including WAF, DDoS mitigation, and Zero Trust Access policies
  • Strong understanding and hands-on experience with federation protocols (SAML, OAuth2, OIDC), SSO models, and identity brokering
  • In-depth knowledge of Multi-Factor Authentication (MFA) design and integration, preferably using enterprise-grade identity providers
  • Experience in certificate-based authentication, encryption, and signature use cases, especially within automated deployment processes
  • Solid experience with PKI and certificate management solutions like EJBCA, Microsoft CA, Cloudflare SSL/TLS, or public CAs (e.g., Entrust, DigiCert, Sectigo)
  • Proficiency in scripting languages such as PowerShell or Python for automation of security operations and certificate lifecycle
  • Familiarity with Zero Trust architecture principles and the ability to apply them in access and security configurations
  • Excellent communication, collaboration, and documentation skills
  • Ability to work independently and report progress proactively without requiring constant supervision
  • Fulltime
Read More
Arrow Right

System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD TS/SCI Clearance
  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
  • 5+ years of experience in enterprise identity and access management architecture
  • Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
  • Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
  • Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
  • Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
  • Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
  • IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)
Job Responsibility
Job Responsibility
  • Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
  • Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
  • Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
  • Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
  • Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
  • Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
  • Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
  • Lead proof-of-concepts (POCs) and technology evaluations for emerging identity
Read More
Arrow Right

Senior System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD TS/SCI Clearance
  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
  • 10+ years of experience in enterprise identity and access management architecture
  • Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
  • Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
  • Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
  • Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
  • Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
  • IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)
Job Responsibility
Job Responsibility
  • Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
  • Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
  • Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
  • Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
  • Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
  • Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
  • Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
  • Lead proof-of-concepts (POCs) and technology evaluations for emerging identity
Read More
Arrow Right

Identity & Access Management Technician

The Identity & Access Management (IAM) Technician supports the secure provisioni...
Location
Location
United States , Vandenberg SFB
Salary
Salary:
75000.00 - 95000.00 USD / Year
deltasands.com Logo
Delta Solutions & Strategies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • TS/SCI Security Clearance required
  • Minimum 2–4 years of experience supporting user account management, access control, or PKI operations within DoD or enterprise IT environments
  • Experience working with directory services such as Active Directory and using ticketing systems for request tracking and documentation
  • Associate’s degree in Information Systems, Computer Science, or related field
  • or equivalent combination of education and experience
  • CompTIA Security+ or equivalent baseline certification required
Job Responsibility
Job Responsibility
  • Process account creation, modification, and termination requests in accordance with established workflows and approval procedures
  • Review and verify access request forms (e.g., AF Form 2875) for completeness, justification, and required signatures prior to submission
  • Validate prerequisite documentation such as cybersecurity training certificates, clearance verification, and role-based access eligibility
  • Establish user accounts within authorized systems, ensuring proper group membership, access level, and functional role assignment
  • Deactivate or transfer accounts promptly upon notification of personnel reassignment, separation, or role change
  • Perform periodic audits of user accounts, permissions, and privileged roles to ensure compliance with DoD directives and local access policies
  • Maintain accurate records of account actions, access approvals, and audit results in accordance with configuration management and cybersecurity documentation standards
  • Coordinate with cybersecurity personnel and system administrators to resolve access discrepancies or provisioning errors
  • Assist users with CAC, token, and multifactor authentication (MFA) issues related to network or application access
  • Support the issuance, renewal, suspension, and revocation of PKI certificates in accordance with DoD and organizational policies
What we offer
What we offer
  • medical
  • dental
  • vision
  • life insurance
  • 401(k)
  • PTO
  • paid holidays
  • parental, military and jury duty paid leaves
  • Fulltime
Read More
Arrow Right

Information System Security Manager Level 3

Provide management support for a program, organization, system, or enclave's Inf...
Location
Location
United States , Annapolis Junction
Salary
Salary:
Not provided
ctp-web.com Logo
Columbia Technology Partners
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • U.S. Citizenship is required for all applicants
  • All applicants and employees are subject to random drug testing in accordance with Executive Order 12564
  • Employment is contingent upon successful completion of a security background investigation and polygraph
  • DOD 8570 compliance with IAM III is required
  • This position requires an active Security Clearance with appropriate Polygraph
  • Twelve (12) years of work-related experience in the field of security authorization is required
  • Experience in the following areas is required: knowledge of current security tools, hardware/software security implementation
  • communication protocols
  • or encryption tools and techniques
  • Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services
Job Responsibility
Job Responsibility
  • Provide management support for a program, organization, system, or enclave's Information Assurance program
  • Provide management support for proposing, coordinating, implementing, and enforcing Information System Security policies, standards, and methodologies
  • Manage operational security posture for an Information System or program to ensure Information System Security policies, standards, and procedures are established and followed
  • Provide management of security aspects of the Information System and perform day-to-day security operations of the system
  • Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information
  • Manage the performance of vulnerability/risk assessment analysis to support security authorization
  • Provide management support to configuration management (CM) for information system security software, hardware, and firmware
  • Manage changes to systems and assess the security impact of those changes
  • Manage the process and preparation of documentation reviews to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs)
  • Support security authorization activities in compliance with NSA/CSS Risk Management Framework (RMF) process and DoD Information Assurance Certification and Accreditation Process (DIACAP)
What we offer
What we offer
  • Medical: CTP offers 3 superior plans, bringing our employees both in-network and out-of-network options
  • Vision + Dental: Both free to you + paid in full by CTP
  • Retirement: 401k - 6% company contribution
  • PTO + Leave: A work life balance is extremely important to our team here at CTP, which is why our paid time off plans are so lucrative. Offering customizable leave plans to meet your needs is just one of our many perks! Jury Duty, Bereavement + Military Leave provided
  • Career Growth: Up to $10,000 provided for approved career-related learning, training, education, and/or tuition
  • Life and AD&D Insurance/Short-Term & Long-Term Disability: More peace of mind, at zero cost to you
  • Profit Sharing Bonus: End of year cash gets added to your bottom-line
  • Referral Bonus Program: Our tiered program provides an incentive with each stage of the hiring process your referral passes. Our bonuses range from $7,000-$20,000, if your referral joins the team
  • Fulltime
Read More
Arrow Right

Cloud Security Engineer

As a Cloud Security Automation Engineer, you will be responsible for designing, ...
Location
Location
United States
Salary
Salary:
66379.50 - 150000.00 USD / Year
stridelearning.com Logo
Stride, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Five (5) years' experience in cloud engineering, infrastructure automation, or security engineering with at least 3+ years focused on AWS cloud environments and security automation
  • Ability to work in a fast-paced environment with changing priorities
  • On-call availability for critical security incidents and infrastructure issues
  • Ability to travel 10% of the time
  • Ability to clear required background check
  • Strong experience with AWS services including EC2, VPC, RDS, S3, Lambda, ECS/EKS, CloudFormation, and Systems Manager
  • Proficiency in Infrastructure as Code tools (Terraform, CloudFormation, AWS CDK)
  • Experience with Linux and Windows system administration and troubleshooting
  • Knowledge of networking concepts including VPCs, subnets, routing, load balancing, and DNS
  • Experience with monitoring and logging solutions (CloudWatch, CloudTrail, AWS Config)
Job Responsibility
Job Responsibility
  • Design, deploy, and maintain secure cloud infrastructure on AWS
  • Specialize in the creation of security automation solutions and integrations between security tools
  • Design and implement automated security workflows
  • Create custom integrations between security tools
  • Develop solutions that enhance security posture while reducing manual overhead
  • Perform standard cloud engineering duties including infrastructure provisioning, system administration, performance optimization, and troubleshooting across AWS services
  • Design and develop custom automation solutions for security processes using Python, Go, or PowerShell
  • Create automated workflows for vulnerability management, compliance checking, and incident response
  • Build serverless automation solutions using AWS Lambda, Step Functions, and EventBridge
  • Develop custom scripts and tools to automate repetitive security tasks and processes
What we offer
What we offer
  • Health benefits
  • Retirement contributions
  • Paid time off
  • Bonus eligibility
  • Fulltime
Read More
Arrow Right

ICAM Engineer

The user is the last frontier for cybersecurity. It’s where the perimeter is dra...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience supporting ICAM, security operations or identity governance programs
  • 3+ years of experience with administration of directory services such as Active Directory or LDAP
  • 3+ years of experience with cybersecurity administration, including identity lifecycle management
  • Experience with MFA solutions, such as Okta, Duo, or AuthO, and Privileged Access Management such as CyberArk or Delinea
  • Experience supporting IAM solutions in cloud environments such as Azure or AWS
  • Knowledge of PKI, PIV standards and identity security best practices
  • Knowledge of identity-focused cybersecurity principles and controls
  • Ability to analyze technical documentation and incorporate industry best practices and security findings
  • Secret clearance
  • HS diploma or GED
Job Responsibility
Job Responsibility
  • Support large-scale IAM projects for our government clients
  • Analyze the identity lifecycle, articulating access requirements and defining enterprise identity records
  • Design, deploy, and support systems that verify appropriate user privileges and manage credentials for accessing our clients’ most valuable assets
  • Implement enterprise-class solutions from single sign-on to privileged access systems
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Network Engineer

AAC Inc is seeking a highly skilled and motivated professional to join our team ...
Location
Location
United States , Camp Pendleton
Salary
Salary:
Not provided
aac.com Logo
AAC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Secret clearance
  • 10+ years of experience
  • High School Diploma or greater
  • IAT Level III certification in one of: Cisco Certified Security Professional (CCSP), Fortinet Certified Network Security Professional (FCNSP), Juniper Networks Certified Specialist Security (JNCIP-SEC), Certified Modeling & Simulation Professional (CMSP), Cisco Certified Network Practitioner (CCNP)
  • Experience assisting Government Lead in daily engineering duties
  • Experience evaluating communication hardware/software and troubleshooting LAN/BAN/WAN
  • Experience providing technical leadership in integration and test of complex large-scale computer integrated networks
  • Experience scheduling conversions and cutovers
  • Experience designing and providing near real time full spectrum situational awareness of IT services
  • Experience delivering Navy/Marine Corps NetOps control and visibility via electronic network management systems
Job Responsibility
Job Responsibility
  • Assist the Government Lead in the daily engineering duties on systems
  • Evaluate communication hardware and software communication, troubleshoot LAN/BAN/WAN and other network related problems
  • Provide technical leadership in the integration and test of complex large-scale computer integrated networks
  • Schedule conversions and cutovers
  • Design and provide near real time full spectrum situational awareness of IT services, events, incidents, and infrastructure to support vulnerability analyses
  • Deliver Navy/Marine Corps NetOps control and visibility via electronic network management systems and Command and Control (C2) facilities
  • Facilitate the Government’s exercise of network operational control over critical services and infrastructure
  • Design and perform schema extensions for directory services
  • Perform system integration and server installation on server hardware
  • Perform system backup (Disaster Recovery), security updates, and system integration with HBSS
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy