PKI Audit Consultant
Posted 3 days ago by 1765364390
Negotiable
Outside
Remote
USA
Summary: The PKI Audit Consultant role involves conducting a thorough audit of internal Public Key Infrastructure (PKI) systems to ensure compliance with Federal PKI standards. The consultant will evaluate documentation, perform operational and physical security assessments, and collaborate with stakeholders to deliver a comprehensive Compliance Assessment Report. This position requires significant experience in PKI audits within federal or enterprise environments. The role is remote and classified as outside IR35.
Key Responsibilities:
- Conduct a full PKI audit in accordance with FPKI Compliance Audit Requirements.
- Evaluate CP and CPS documents for conformance and identify gaps or concerns.
- Perform operational analysis of internal Certificate Authority systems and procedures.
- Conduct a detailed physical security assessment of PKI hardware and operations at designated facilities in Northern Virginia.
- Develop a Task Management Plan including a compliance checklist based on previous audits.
- Collaborate with internal stakeholders and technical teams as needed.
- Deliver a final Compliance Assessment Report (CAR) and present findings in a formal briefing.
Key Skills:
- Must be eligible to work in a secure environment. Clearance requirements may apply.
- Proven experience conducting PKI audits in federal or enterprise environments.
- Deep understanding of FPKI, FBCA CP, and CPS documentation.
- Familiarity with cryptographic modules, certificate authorities, and secure credentialing systems.
- Experience with physical and operational security assessments.
- Strong analytical and documentation skills.
- Ability to work independently and collaboratively with technical teams.
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: Other
Detailed Description From Employer:
Role: PKI Audit Consultant
Location: Remote
Duration: long term
Experience: 10+
We seeks a qualified PKI Audit Consultant to perform a comprehensive
audit of internal Public Key Infrastructure (PKI) systems. This role is essential
for ensuring compliance with Federal PKI (FPKI) standards, including the
Federal Bridge Certificate Authority (FBCA) Certificate Policy (CP) and
Certification Practices Statement (CPS).
Key Responsibilities:
Conduct a full PKI audit in accordance with FPKI Compliance Audit Requirements.
Evaluate CP and CPS documents for conformance and identify gaps or concerns.
Perform operational analysis of internal Certificate Authority systems and procedures.
Conduct a detailed physical security assessment of PKI hardware and operations at designated facilities in Northern Virginia.
Develop a Task Management Plan including a compliance checklist based on previous audits.
Collaborate with internal stakeholders and technical teams as needed.
Deliver a final Compliance Assessment Report (CAR) and present findings in a formal briefing.
Required Qualifications:
Must be eligible to work in a secure environment. Clearance requirements may apply.
Proven experience conducting PKI audits in federal or enterprise environments.
Deep understanding of FPKI, FBCA CP, and CPS documentation.
Familiarity with cryptographic modules, certificate authorities, and secure credentialing systems.
Experience with physical and operational security assessments.
Strong analytical and documentation skills.
Ability to work independently and collaboratively with technical teams.
Preferred Qualifications:
Prior experience auditing federal PKI systems.
Knowledge of Axiad SaaS cloud portal services.
Familiarity with legacy and modern PKI platforms.
Deliverables:
Compliance Assessment Report Includes:
o CP Policy mapping analysis
o CPS compliance analysis
o Operational analysis
o Physical security assessment
Final Briefing Presentation of findings to internal stakeholders.