CAC/PKI Registration Authority
Highlights of Responsibilities:
- Registration Authority (RA) An RA is an official recognized by the Certificate Authority to ensure that the subscribers appropriately present the necessary credentials for registration into the PKI. In the Department of Defense (DoD) PKI, RAs enroll devices into the PKI, revoke user certificates and authorize Local Registration Authorities (LRA) to enroll individual subscribers.
- Supporting revocation and suspension of a certificate on Unclassified and/or Classified networks.
- Supporting restoration of suspended certificates.
- Supporting registration and/or termination of Local Registration Authorities (LRAs).
- Adding, modifying and deleting directory entries as needed.
- Performing third party key recovery.
- Approving issuance of certificates to Network Process Engines (NPEs).
- Producing and delivering an Issuance report.
- Supporting retention of all associated documentation for a period of 10 years for DoD and 0 years 6 months for NSS documents. The retention can be in an electronic format, i. e. scanned image (pdf). If stored in digital format, the originals may be disposed of appropriately. All retention and disposal will be in accordance with CNSS Instruction No. 1300, December 2014.
- Supporting duties as assigned through Natonal Security Service/Public Key Infrastructure Registration Practice Statement (NSS/PKI RPS) and Department of Defense/Public Key Infrastructure Certificate Practice Statement (DoD/PKI CPS).
- Providing support to LRAs, Trusted Agents (TAs), and Enhanced Trusted Agents (ETAs) in accordance with DoD PKI RA-LRA CPS and RPS to ensure RA Operations are aligned with DISA Audit requirements.
- Monitoring the RA Operations in accordance with DoD PKI RA-LRA CPS and RPS to ensure RA Operations are aligned with DISA Audit requirements.
- Supporting the Army CIO/G6 Cyber Security Directorate and the NETCOM G3/5/7 in addressing audit findings to include migration and correction of findings in accordance with DoD PKI CPS and RPS.
- Developing and maintaining an On the Job Training (OJT) package.
- Current Active Secret Security Clearance, IT Level III and NACLC in accordance with AR 25-2, and have NOT knowingly been previously denied a security clearance or had a security clearance revoked.
- Bachelor's Degree with 4 years of practical experience or 9 years of relevant experience may be substituted for education.
- Current and maintain IAM I certified as specified in DOD 8570. 01-M and BBP 05-PR-M-0002 (Security+ CE (CompTIA), CAP (ISC)2, or GSLC).
Preferred Experience and Education:
- NIPR/SIPR Network Connectivity experience
- SIPR Token issuance/management and problem resolution experience
- Windows 7 installation, maintenance and troubleshooting skills
- Valid US Passport
Job Type: Full-Time
Location: Gaithersburg, MD