C004307 Engineer (IdM/PKI) (NS) BELGIUM - 21 Jul

Deadline Date:  Monday 21 July 2025
 
Requirement:   Engineer (IdM/PKI)
 
Location:  Mons, BELGIUM
 
Time On-Site:  100%
 
Not to Exceed Rate:  71 EUR
 
Total Scope of the request (hours):  570
 
Required Start Date:  1 September 2025
 
Required Security Clearance:  NATO SECRET
 

1. Current National or NATO SECRET clearance
2. Nationality of one of the NATO member countries
3. Current work visa for the specific location if applying for an in-country position

• Manage the NATO wide NPKI Registration Authorities;
• Manage and control of the lifecycle of end users and devices certificates for all NPKI CA's.
• Manage Card Management System.
• Responsible for PKI sub components connected to the NPKI CA especially in context of potential new services testing and integration.
• Certificate Authority components Log analysis, (Troubleshoot the system ALARM/ERRORS and monitor users and interfaces activity);
• Responsible for the creation of NPKI related guidance and procedures (SOP).
• Responsible for the delivery of 2nd and 3rd level technical support of CIS services to the NPKI customers.
• Responsible for the NCIA ITSM ticketing system.
• Responsible for certificate creation and Smart Cards enrolment.
• Responsible for supporting all NATO exercises and missions.
• Responsible for NPKI system documentation, hardware inventory, software configuration and inventory and regular systems and applications patching.
• Be flexible to work outside normal office hours in response to crises, operational requirements.
• Performs other duties as may be required.

• The candidate must have a currently active NATO SECRET security clearance
• A university degree in a relevant discipline and 3 years of specific experience
• Extensive knowledge of modern communication and Internet Protocol (IP) based networking technologies and systems including security aspects.
• 3 years extensive experience with PKI System development, design, management.
• Extensive knowledge of Information security and Cryptography (symmetric and asymmetric encryption, public key infrastructure (PKI) encryption, public key encryption, hash functions, digital signatures, digital certificates).
• Knowledge of the principles of computer and communications security, networking, and vulnerabilities of modern operating systems and applications.
• Experience with SQL database administration.
• Practical experience in scripting (Python, PowerShell).
• Practical experience in SSL, TLS, and OpenSSL.
• Extensive knowledge with Microsoft Excel.

• RHEL system administration.
• Experience in development and implementation of computer security policies.
• Practical experience in automation processes tools (Ansible).
• Extensive knowledge of Containerization technologies.
• Extensive knowledge of Kubernetes Orchestrator Service Management.