Deadline Date:
Tuesday 23 September 2025
Requirement:
Engineer (IdM/PKI)
Location:
Mons, BELGIUM
Time On-Site:
100%
Not to Exceed:
81 EUR
Total Scope of the request (hours):
304
Required Start Date:
29 October 2025
Required Security Clearance:
NATO SECRET
Please do NOT apply for any NATO contract positions unless you meet ALL the following criteria:
- Current National or NATO SECRET clearance
- Nationality of one of the NATO member countries
- Current work visa for the specific location if applying for an in-country position
Any applications that do NOT meet all the above - and do not CLEARLY show these on the CV - will be deleted.
Duties and Role:
- Responsible for developing automatic tools and processes.
- Responsible for developing containerized technologies.
- Manage and control of the lifecycle of end users and devices certificates for all NPKI CA's.
- Manage Card Management System.
- Responsible for PKI sub components connected to the NPKI CA especially in context of potential new services testing and integration.
- Responsible for the creation of NPKI related guidance and procedures (SOP).
- Responsible for the delivery of 2nd and 3rd level technical support of CIS services to the NPKI customers.
- Responsible for the NCIA ITSM ticketing system.
- Responsible for certificate creation and Smart Cards enrolment.
- Responsible for supporting all NATO exercises and missions.
- Supervises the day-to-day operations / management / backup / restore of the PKI systems.
- Responsible for NPKI system documentation, hardware inventory, software configuration and inventory and regular systems and applications patching.
- Be flexible to work outside normal office hours in response to crises, operational requirements.
- Performs other duties as may be required.
Skill, Knowledge & Experience:
- The candidate must have a currently active NATO SECRET security clearance
- A university degree in a relevant discipline and 3 years of specific experience
- Extensive knowledge of modern communication and Internet Protocol (IP) based networking technologies and systems including security aspects.
- 3 years extensive experience with PKI System development, design, management.
- Practical experience in PKI Architecture design.
- Extensive knowledge in Containerization technologies.
- Extensive knowledge of Kubernetes Orchestrator Service Management.
- Practical experience in automation processes tools (Ansible).
- Extensive knowledge of Information security and Cryptography (symmetric and asymmetric encryption, public key infrastructure (PKI) encryption, public key encryption, hash functions, digital signatures, digital certificates).
- Knowledge of the principles of computer and communications security, networking, and vulnerabilities of modern operating systems and applications.
- Experience with SQL database administration.
- Practical experience in scripting (Python, Powershell).
- Practical experience in SSL, TLS, and OpenSSL.
- Linux RHEL system administration
- Experience in development and implementation of computer security policies.
- Knowledge of post-quantum cryptography (PQC) algorithms.
- Experience with Post-Quantum PKI.