Koniag Government Services

Cryptographic Engineer Lead

Koniag Government Services$120K — $150K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Computer Science, Mathematics, Electrical Engineering, Cybersecurity, or related field.
  • 8+ years in cryptographic engineering or information security, including 3 years in a lead role.
  • Experience with cryptographic solutions and key management in federal government or large enterprise environments.
  • Familiarity with federal cryptographic standards like FIPS 140-2/140-3 and NIST guidelines.
  • Relevant certifications such as CISSP, CISM, or equivalent.

Responsibilities

  • Act as the principal SME for cryptographic engineering supporting SBA's cybersecurity initiatives.
  • Design and implement cryptographic solutions and controls across diverse IT infrastructures.
  • Manage SBA's enterprise key management program in compliance with NIST guidelines.
  • Evaluate cryptographic technologies to address emerging threats and vulnerabilities.
  • Lead SBA's transition to post-quantum cryptography and develop migration strategies.
  • Collaborate with IT teams to integrate cryptographic requirements into system development processes.
  • Assess existing systems for cryptographic compliance and offer remediation strategies.

Benefits

  • Comprehensive health insurance options, including medical and dental coverage.
  • Retirement plan options with company matching contributions.
  • Opportunities for professional development and continuing education.
  • Flexible work environment including telecommuting options.
  • Generous paid time off policy including holidays and vacation days.
Full Job Description
Koniag Data Solutions, a Koniag Government Services company, is seeking an experienced Cryptographic Engineer Lead to support the U.S. Small Business Administration (SBA). The ideal candidate is a highly skilled cryptography and information security professional with deep expertise in cryptographic engineering, key management, and the design and implementation of cryptographic solutions within complex federal IT environments. This individual will serve as the primary subject matter expert (SME) for cryptographic engineering activities at the SBA, providing strategic leadership, technical guidance, and hands-on program management to ensure the agency's cryptographic systems, protocols, and controls meet the highest standards of security and comply with applicable federal cryptographic policies, standards, and requirements.

The Cryptographic Engineer Lead will serve as the senior technical expert responsible for leading the design, development, implementation, and management of cryptographic solutions and key management programs that protect SBA's sensitive data, systems, and communications.

Principal responsibilities will include but are not limited to:
  • Serve as the primary subject matter expert (SME) and technical lead for all cryptographic engineering activities supporting SBA's cybersecurity program, providing strategic direction, expert guidance, and hands-on technical leadership to ensure the security and integrity of SBA's cryptographic systems and controls.
  • Lead the design, development, and implementation of cryptographic solutions, protocols, and controls across SBA's enterprise IT environment, including on-premises, cloud, and hybrid infrastructures, ensuring alignment with federal cryptographic standards and best practices.
  • Oversee the development, implementation, and management of SBA's enterprise key management program, including the lifecycle management of cryptographic keys, certificates, and related cryptographic material in accordance with NIST guidelines and federal key management requirements.
  • Evaluate and recommend cryptographic algorithms, protocols, and technologies to address identified security gaps, emerging threats, and evolving federal cryptographic requirements, including the transition to post-quantum cryptography (PQC) standards.
  • Lead SBA's transition planning and implementation efforts for post-quantum cryptography, assessing the agency's current cryptographic inventory, identifying quantum-vulnerable systems and protocols, and developing a comprehensive migration roadmap aligned with NIST PQC standards and applicable OMB and CISA guidance.
  • Collaborate with SBA IT architects, system owners, developers, and program teams to integrate cryptographic requirements and controls into the design, development, and deployment of new and existing systems and applications throughout the SDLC.
  • Conduct cryptographic assessments and reviews of SBA's existing systems, applications, and infrastructure, identifying cryptographic weaknesses, misconfigurations, and areas of non-compliance with federal cryptographic standards, and developing remediation recommendations.
  • Develop and maintain comprehensive cryptographic program documentation, including cryptographic standards and guidelines, key management plans, cryptographic inventories, and technical design documents.
  • Provide expert guidance on the implementation and management of Public Key Infrastructure (PKI) solutions, including certificate authority (CA) management, certificate lifecycle management, and the integration of PKI with SBA's identity and access management (IAM) environment.
  • Support the integration of cryptographic requirements into SBA's NIST Risk Management Framework (RMF) and Authorization to Operate (ATO) processes, ensuring cryptographic controls are appropriately selected, implemented, assessed, and documented in system security documentation.
  • Assess the cryptographic security implications of emerging technologies, including cloud services, artificial intelligence, machine learning, and IoT, as they relate to SBA's technology strategy and cryptographic risk posture.
  • Collaborate with SBA's SOC, incident response, and cybersecurity architecture teams to ensure cryptographic controls support effective threat detection, incident response, and forensic investigation capabilities.
  • Develop and deliver cryptographic awareness and training materials to SBA IT staff, developers, and security personnel, fostering a strong understanding of cryptographic best practices and requirements across the agency.
  • Prepare and present detailed technical briefings, reports, and cryptographic program status updates to SBA leadership and stakeholders, clearly communicating cryptographic risks, findings, and recommendations
  • Monitor and analyze developments in cryptographic research, emerging threats, vulnerability disclosures, and changes to federal cryptographic standards and policies, applying new knowledge to continuously improve SBA's cryptographic posture.
  • Mentor and provide technical guidance to junior cryptographic engineers and security staff, fostering professional development and building organizational cryptographic expertise.

Education and Experience:

Required:
  • Bachelor's degree in Computer Science, Mathematics, Electrical Engineering, Cybersecurity, Information Technology, or a related field from an accredited college or university.
  • 8+ years of progressive experience in cryptographic engineering, information security, or a closely related field, with at least 3 years in a lead or senior cryptographic engineering role.
  • Demonstrated experience designing, implementing, and managing cryptographic solutions and key management programs within a federal government or large enterprise IT environment.
  • Deep knowledge of federal cryptographic standards and requirements, including FIPS 140-2/140-3, NIST SP 800-57, NIST SP 800-131A, and applicable CNSS policies and instructions.
  • One or more of the following certifications:
  • Certified Information Systems Security Professional (CISSP)
  • CISSP - Information Systems Security Engineering Professional (CISSP-ISSEP)
  • Certified Encryption Specialist (EC-Council CES)
  • GIAC Security Expert (GSE)
  • CompTIA Advanced Security Practitioner (CASP+)
  • Certified Information Security Manager (CISM)

Desired:
  • Master's degree or PhD in Computer Science, Mathematics, Cryptography, Electrical Engineering, or a related field, with a focus on cryptography or information security.
  • 10+ years of cryptographic engineering experience, with a strong background supporting federal government agency cryptographic programs.
  • Experience with or coursework in advanced cryptographic theory, including lattice-based cryptography, hash-based cryptography, or other post-quantum cryptographic algorithms.

Required Skills and Competencies:
  • Exceptional communication skills in English - both written and oral - with the ability to clearly convey complex cryptographic concepts, technical findings, and recommendations to both technical and non-technical audiences, including senior SBA leadership and government stakeholders.
  • Deep expertise in applied cryptography, including symmetric and asymmetric encryption algorithms, hashing algorithms, digital signatures, key exchange protocols, and cryptographic random number generation.
  • Comprehensive knowledge of federal cryptographic standards, policies, and requirements, including FIPS 140-2/140-3, NIST SP 800-57 (Key Management), NIST SP 800-131A (Transitioning Cryptographic Algorithms and Key Lengths), NIST SP 800-175B, and applicable CNSS instructions.
  • Strong experience designing and implementing enterprise key management solutions, including hardware security modules (HSMs), key management servers, and certificate management platforms.
  • Expertise in Public Key Infrastructure (PKI), including the design, implementation, and management of certificate authority (CA) hierarchies, certificate lifecycle management, and PKI integration with enterprise IAM environments.
  • Demonstrated knowledge of post-quantum cryptography (PQC) concepts, NIST PQC standardization efforts, and the implications of quantum computing for current cryptographic systems and federal agency cryptographic migration planning
  • Experience assessing and remediating cryptographic vulnerabilities in enterprise IT systems, applications, and protocols, including TLS/SSL configuration weaknesses, weak algorithm usage, improper key management practices, and certificate management issues.
  • Proficiency in cryptographic protocol analysis and the ability to evaluate the security of cryptographic implementations in software, hardware, and network protocols.
  • Strong knowledge of secure communications protocols and their cryptographic underpinnings, including TLS, SSH, IPsec, S/MIME, and PGP.
  • Experience integrating cryptographic solutions into cloud environments, including the use of cloud-native key management services such as AWS KMS, Azure Key Vault, and Google Cloud KMS.
  • Familiarity with hardware security modules (HSMs) and trusted platform modules (TPMs), including their configuration, management, and integration into enterprise cryptographic architectures.
  • Experience supporting the NIST RMF and ATO process, including the documentation and assessment of cryptographic controls within SSPs and security assessment reports (SARs).
  • Knowledge of federal cybersecurity frameworks and compliance requirements, including NIST SP 800-53, FISMA, and applicable CISA guidance, as they relate to cryptographic control implementation and assessment.
  • Strong analytical and problem-solving skills with the ability to assess complex cryptographic challenges, identify risks, and develop practical, standards-compliant remediation strategies.
  • Ability to obtain and maintain a Public Trust Clearance.

Desired Skills and Competencies:
  • Prior experience supporting SBA or other federal civilian agency cryptographic engineering programs.
  • Hands-on experience with post-quantum cryptographic algorithm implementation and testing, including CRYSTALS-Kyber, CRYSTALS-Dilithium, FALCON, or SPHINCS+.
  • Experience developing or reviewing cryptographic implementations in programming languages such as C, C++, Python, Java, or Go, with the ability to identify cryptographic vulnerabilities and weaknesses in source code.
  • Familiarity with side-channel attack methodologies and countermeasures, including timing attacks, power analysis attacks, and fault injection techniques, and their implications for cryptographic implementation security.
  • Knowledge of blockchain and distributed ledger technology (DLT) cryptographic mechanisms and their potential application within federal agency environments.
  • Experience with cryptographic agility design patterns and their application in developing systems capable of transitioning between cryptographic algorithms with minimal operational disruption.
  • Familiarity with FedRAMP authorized cloud environments and experience assessing cryptographic controls within FedRAMP boundaries and cloud service provider (CSP) cryptographic implementations.
  • Knowledge of zero-knowledge proof systems, homomorphic encryption, or secure multi-party computation concepts and their potential applications in federal data protection and privacy-enhancing technology initiatives.
  • Experience with code signing, software supply chain security, and the cryptographic mechanisms used to ensure the integrity and authenticity of software artifacts.
  • Certified Cloud Security Professional (CCSP) certification or equivalent cloud security certification with demonstrated experience in cloud cryptographic controls.
  • Experience developing enterprise cryptographic roadmaps, standards, and guidelines, and leading cross-functional teams in the implementation of cryptographic modernization initiatives.

About Koniag Government Services

Koniag Government Services Careers

Join the dynamic team at Koniag Government Services, a leader in providing innovative solutions to government clients. This esteemed company offers a plethora of job opportunities that pave the way for professional growth and career advancement in a diverse and inclusive environment.

Explore Career Opportunities

Koniag Government Services is actively hiring and offers a range of positions that cater to various skills and experiences. Whether you're a seasoned professional or a recent graduate, Koniag Government Services provides a platform to enhance your career through meaningful work in a supportive culture.

Innovation and Leadership

At the forefront of innovation, Koniag Government Services encourages its team to lead with creativity and strategic thinking. The company is committed to leadership development and diversity training, ensuring that all team members have the opportunity to excel and contribute to industry-leading projects.

Professional Growth and Development

Koniag Government Services is dedicated to the professional development of its employees. With comprehensive benefits, competitive employment packages, and opportunities for advancement, the company supports its team in achieving their career goals. Networking within the company and industry is encouraged, fostering a community of learning and mutual growth.

Internship Programs

For those starting their career journey, Koniag Government Services offers internship programs that provide real-world experience and a pathway to full-time employment. Interns gain valuable industry knowledge and develop essential skills under the guidance of experienced mentors.

Commitment to Diversity and Inclusion

Diversity is at the core of Koniag Government Services' values. The company is committed to creating an inclusive environment where diverse voices are heard and valued. Diversity training is integral, equipping the team with the tools to thrive in a multicultural setting.

Applying for a Position

To apply for a position at Koniag Government Services, candidates should prepare a resume that highlights relevant experience and skills. The interview process is designed to assess fit both for the role and the company culture, ensuring alignment with the team’s values and objectives.

Stay Connected with Koniag Government Services Careers

Explore the various job opportunities and embark on a path of professional growth and innovation. Koniag Government Services is not just a workplace but a community where careers flourish in an environment of respect, integrity, and continuous learning.

Search Koniag Government Services Jobs

Discover the exciting career opportunities available at Koniag Government Services. Search for open positions that match your skills and interests, and join a team that values curiosity, creativity, and collaboration.

Keep Up to Date

Stay informed with the latest career tips, industry insights, and company updates directly from Koniag Government Services. Engage with content that can transform your professional journey and lead to rewarding opportunities.

Job Alert Emails

Personalize your subscription to receive job alerts and insider tips tailored to your preferences from Koniag Government Services. See what exciting and rewarding opportunities await in the field of government services.
Learn more about Koniag Government Services
Size
501 employees
Industry

Similar Jobs

More Jobs at Koniag Government Services

  • Koniag Government Services
    Senior Cost Estimator
    $90K — $120K *
    Warrenton, VA 20187 (Fauquier County)
    Aerospace & Defense
    In-Person
  • Koniag Government Services
    Zero Trust Architect
    $120K — $150K *
    Fort Washington, MD 20744 (Prince Georges County)
    Education, Government & Non-Profit
    In-Person
  • Koniag Government Services
    Cryptographic Engineer Lead
    $120K — $150K *
    Washington, DC 20011 (District Of Columbia County)
    Education, Government & Non-Profit
    In-Person
  • Koniag Government Services
    Cryptographic Engineer Lead
    $120K — $150K *
    Fort Washington, MD 20744 (Prince Georges County)
    Information Technology
    In-Person
  • Koniag Government Services
    Systems Engineer
    $90K — $120K *
    Washington, DC 20011 (District Of Columbia County)
    Education, Government & Non-Profit
    In-Person

More Information Technology Jobs

Find similar Cryptographic Engineer Lead jobs: