Identity Engineer

Job Details:

Job Description: 

The world is transforming - and so is Intel. Intel is a company of bold and curious inventors and problem solvers who create some of the most astounding technology advancements and experiences in the world. With a legacy of relentless innovation and a commitment to bring smart, connected devices to every person on Earth, our diverse and brilliant teams are continually searching for tomorrow's technology and revel in the challenge that changing the world for the better brings.

We work every single day to design and manufacture silicon products that empower people's digital lives. Come join us and do something wonderful. Who we Are: Intel's Information Security organization enables Intel to provide secure products, solutions, and services which meet U.S. regulatory requirements. The Information Security organization supports the unique IT information Security and Compliance requirements for Intel Federal projects that deliver products and/or services to the US Government (USG).

As part of this team, you will help us grow our secure solution suite to meet U.S. Government requirements. The Intel Information Security organization is seeking a Network Security Engineer. The candidate chosen for this role will assist senior engineers with design, architecture, and build of secure classified network products to support USG operations.

Primary duties and responsibilities:

• Design, deploy, and manage enterprise-grade PKI solutions.
• Lead certificate lifecycle management efforts using EJBCA.
• Automate PKI-related tasks and processes.
• Collaborate with security, infrastructure, and DevOps teams to integrate PKI solutions with various platforms and applications.
• Develop and enforce policies, standards, and best practices for certificate issuance, renewal, and revocation.
• Monitor PKI infrastructure health, availability, and compliance with internal and regulatory requirements.
• Troubleshoot PKI-related issues including certificate chain validation, CRL/OCSP configurations, and encryption/signing issues.
• Provide documentation, technical guidance, and training to internal teams.
• Business travel is required as needed.
• Ability to thrive in dynamic and fast-paced environments

Qualifications:

You must possess the below minimum qualifications to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates. Experience listed below would be obtained through a combination of your degree, research and or relevant previous job and or internship experiences.

Minimum Qualifications:
This position requires verification of U.S. citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States government customers and is subject to certain citizenship-based restrictions.

• The ability to obtain and maintain a US Government Security Clearance.
• High School /Equivalent Diploma with at least one of the following security certifications: CISSP, CEH, SSCP OR Bachelor's degree and 2 years of applicable experience.

2+ years of experience in the following:

• Scripting for automation and configuration management.
• Strong understanding of certificates (X.509), certificate authorities (CAs), OCSP, CRLs, and SSL/TLS protocols.

Preferred Qualifications:

• Active US Government Top Secret (TS) Security Clearance with the ability to obtain and maintain SCI access
• Bachelor's degree in Systems Engineering, Cyber Security Engineering, Computer Engineering, Computer Science, Information Systems, or similar discipline and four years of work-related experience; or an equivalent combination of education and experience
• Experience with DoD security implementation (e.g. STIG) and security tools for managing the environment
• Experience with business continuity and disaster recovery.
• Experience with secure coding and encryption techniques.
• Experience with network analysis software such as Sniffer, Wireshark, or Microsoft Network Monitor or Bro/Zeek
• Experience with log management and analysis tools such as Splunk, ELK, DataDog or similar.
• Experience utilizing Kubernetes/Docker for support of CI/CD and autoscaling containerized applications.
• Experience with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, etc.).
• Familiarity with HSMs, and certificate enrollment (e.g., SCEP, EST, ACME).

          

Job Type:

Experienced Hire

Shift:

Shift 1 (United States of America)

Primary Location: 

US, California, Santa Clara

Additional Locations:

US, Arizona, Phoenix, US, Oregon, Hillsboro

Business group:

Intel's Information Technology Group (IT) designs, deploys and supports the information technology architecture and hardware/software applications for Intel. This includes the LAN, WAN, telephony, data centers, client PCs, backup and restore, and enterprise applications. IT is also responsible for e-Commerce development, data hosting and delivery of Web content and services.

Posting Statement:

All qualified applicants will receive consideration for employment without regard to race, color, religion, religious creed, sex, national origin, ancestry, age, physical or mental disability, medical condition, genetic information, military and veteran status, marital status, pregnancy, gender, gender expression, gender identity, sexual orientation, or any other characteristic protected by local law, regulation, or ordinance.

Position of Trust

N/A

Benefits:

We offer a total compensation package that ranks among the best in the industry. It consists of competitive pay, stock, bonuses, as well as, benefit programs which include health, retirement, and vacation.  Find more information about all of our Amazing Benefits here:

https://intel.wd1.myworkdayjobs.com/External/page/1025c144664a100150b4b1665c750003

Annual Salary Range for jobs which could be performed in the US:

$117,270.00-$165,550.00

Salary range dependent on a number of factors including location and experience.

Work Model for this Role

This role will require an on-site presence. * Job posting details (such as work model, location or time type) are subject to change.