PKI Lead Engineer

Job Summary 

The PKI Lead Engineer will support the Air Force Public Key Infrastructure (AF PKI) Program by evaluating and integrating emerging commercial and government technologies to enhance DoD and DAF PKI capabilities. This role involves assessing interoperability and feasibility of new technologies, testing Commercial Off-The-Shelf (COTS) products, re-evaluating existing solutions, and developing strategies for capability transformation. The engineer will work with vendors, produce detailed technical reports, and recommend advancements such as stronger cryptographic algorithms, mobile device integration, and single sign-on solutions. This position requires a forward-thinking technical expert with strong evaluation and testing skills in a Department of the Air Force (DAF) context. 

Job Duties 

• Technology Evaluation: Evaluate emerging commercial and government technologies (e.g., RSA-4096, SHA-384, non-person entity certificates, derived credentials, FIPS 201 compliance, PKI on SIPRNet/NIPRNet/JWICS, mobile devices, SSO, web servers, MDM) for interoperability and feasibility with DoD/AF PKI, as directed by the Government; re-evaluate existing COTS solutions for compatibility with new features. 
• Vendor Coordination: Collaborate with vendors and partners to communicate requirements, obtain evaluation copies of hardware/software, and purchase COTS products using Other Direct Costs (ODC), tracking them as Contractor Acquired Property until transitioned to Government Furnished Equipment (GFE). 
• Preliminary Testing: Conduct preliminary testing to validate new devices/applications against DoD/AF PKI engineering and security standards, assessing efficiency, effectiveness, and implementation quality. 
• Technical Reporting: Produce and deliver COTS Product Evaluation Technical Reports within seven days of testing completion, detailing compatibility and functionality with DoD/AF PKI, indicating suitability for DAF plans, and sharing results with vendors/other DoD entities as approved by the Government. 
• Re-evaluation of Fielded COTS: Reassess existing AF PKI COTS (e.g., middleware, online certificate status protocol software) for replacement with Microsoft or other solutions, documenting results and recommendations in technical reports within seven days of testing. 
• Capability Transformation: Implement processes to introduce new capabilities, determining requirements, resources, and impacts; provide the Government with recommended transformation strategies for existing PKI capabilities. 
• Technical Solution: Provide technical expertise to develop solutions to new or updated requirements, implementation of commercial product updates, and integration with new enterprise tools. 
• Strategic Planning Support: Assist the PKI Strategy Manager in strategic planning to enhance and evolve PKI within the DAF over the next 5 years, emphasizing performance and efficiency improvements. 
• Current State Assessment: Assist the PKI Strategy Manager with assessing the current state of PKI in the DAF, conducting a Strengths, Weaknesses, Opportunities, Threats (SWOT) analysis to provide a comprehensive baseline for planning. 

Required Qualifications 

• Technical Evaluation: Experience evaluating and testing emerging technologies for interoperability and feasibility in a cybersecurity or PKI environment. 
• PKI Expertise: Knowledge of PKI systems and capabilities (e.g., cryptographic algorithms, mobile integration, SSO, FIPS 201), preferably within DoD/DAF contexts. 
• Testing Skills: Proficiency in conducting technical tests to validate hardware/software against security and engineering standards. 
• Vendor Management: Ability to coordinate with vendors, articulate requirements, and manage procurement processes using ODC. 
• Documentation: Strong skills in producing detailed technical reports with actionable recommendations. 
• Security Clearance: Must possess or be eligible to obtain and maintain a minimum Secret clearance, with all employees cleared to at least Secret by the contract start date of June 1, 2025. 
• Location: Ability to work in San Antonio, TX, with potential on-site support at the Government-leased facility for testing and coordination. 
• Education: Bachelor’s degree in related field. 

Preferred Qualifications 

• Security Clearance: Active Top Secret (TS) or Top Secret /Secure Compartmented Information (TS/SCI) clearance. 
• DAF PKI Experience: Prior work with AF PKI systems, including fielded COTS like middleware or OCSP software, enhancing relevance to program needs. 
• Certifications: Relevant certifications such as CompTIA Security+, CISSP, Certified Ethical Hacker (CEH), or DoD 8570/8140-approved Information Assurance certifications (e.g., IAT Level II or higher). 
• Emerging Tech Knowledge: Familiarity with advanced PKI technologies (e.g., RSA-4096, derived credentials, JWICS integration, MDM solutions). 
• Strategic Planning: Experience developing transformation strategies for technical capabilities, including resource and impact analysis. 
• Analytical Skills: Advanced ability to assess efficiency, effectiveness, and compatibility, translating findings into strategic recommendations.