Deadline Date: Monday 21 July 2025
Requirement: Engineer (IdM/PKI)
Location: Mons, BE
Full Time On-Site: Yes
Time On-Site: 100%
Total Scope of the request (hours): 570
Required Start Date: 1 September 2025
End Contract Date: 31 December 2025
Required Security Clearance: NATO SECRET
Duties and Role:
1. Manage the NATO wide NPKI Registration Authorities;
2. Manage and control of the lifecycle of end users and devices certificates for all NPKI CA's.
3. Manage Card Management System.
4. Responsible for PKI sub components connected to the NPKI CA especially in context of potential new services testing and integration.
5. Certificate Authority components Log analysis, (Troubleshoot the system ALARM/ERRORS and monitor users and interfaces activity);
6. Responsible for the creation of NPKI related guidance and procedures (SOP).
7. Responsible for the delivery of 2nd and 3rd level technical support of CIS services to the NPKI customers.
8. Responsible for the NCIA ITSM ticketing system.
9. Responsible for certificate creation and Smart Cards enrolment.
10. Responsible for supporting all NATO exercises and missions.
11. Responsible for NPKI system documentation, hardware inventory, software configuration and inventory and regular systems and applications patching.
12. Be flexible to work outside normal office hours in response to crises, operational requirements.
13. Performs other duties as may be required.
Requirements
Skill, Knowledge & Experience:
14. The candidate must have a currently active NATO SECRET security clearance
15. A university degree in a relevant discipline and 3 years of specific experience
16. Extensive knowledge of modern communication and Internet Protocol (IP) based networking technologies and systems including security aspects.
17. 3 years extensive experience with PKI System development, design, management.
18. Extensive knowledge of Information security and Cryptography (symmetric and asymmetric encryption, public key infrastructure (PKI) encryption, public key encryption, hash functions, digital signatures, digital certificates).
19. Knowledge of the principles of computer and communications security, networking, and vulnerabilities of modern operating systems and applications.
20. Experience with SQL database administration.
21. Practical experience in scripting (Python, PowerShell).
22. Practical experience in SSL, TLS, and OpenSSL.
23. Extensive knowledge with Microsoft Excel.
Desirable Experience:
24. RHEL system administration.
25. Experience in development and implementation of computer security policies.
26. Practical experience in automation processes tools (Ansible).
27. Extensive knowledge of Containerization technologies.
28. Extensive knowledge of Kubernetes Orchestrator Service Management.