22 Apr
Systems Engineer IV - PKI Emgineer
California, Woodlandhills , 91367 Woodlandhills USA

Vacancy expired!

Req#: 12364395 Job Title: Systems Engineer IV - PKI Engineer Location: Woodland Hills, CA 91367 Duration: 6 Months Contract Duties: Sr PKI Engineer We are seeking a Sr Public Key Infrastructure (PKI) Engineer to support our enterprise PKI service. You will be responsible for designing, engineering, and supporting the enterprise PKI solutions that enable the management and monitoring of Digital Certificates. Utilizing your applied security background, you will ensure that Digital Certificate Keys are managed in ways to maintain their integrity. Your understanding of distributed systems, cloud computing, and secure development will enable you to analyze, design, develop, and operate the PKI infrastructure at peak efficiency.

  • Implement PKI infrastructure within the organization.
  • Consult with other members of project team and end users to identify PKI requirements and develop requirements documentation.
  • Contribute to the technical direction on all areas of PKI architecture, including policies, standards strategies, automation, and governance. Complete documentation as required in support of this.
  • Provide guidance to key stakeholders on PKI lifecycle, processes, and procedures.
  • Monitoring systems and processes, performing system health checks, maintaining system logs, and troubleshooting of system problems including hardware, application, and operating system related issues.
  • System/network certificate management
  • Mobile code signing implementation.
  • Management of all certificates and keys, including providing private key recovery and certificate revocation functionality.
  • Implement certificate-based authentication for both logical and physical access.
  • Successfully adhere to implementation schedules for system deployments and improvements following defined change control processes
  • Ability to brief senior leadership on all PKI related projects and events.
Skills: Qualifications:
  • Subject matter expertise for all areas of certificates and implementation & operation of PKI, with 7+ years of hands-on use in a global enterprise
  • Subject matter expertise for Key Management and Certificate enrollment/revocation processes.
  • Fluency in security & encryption terminology
  • Problem solving and troubleshooting of complex issues.
  • Hands on experience with PKI Registration Authority (RA) issuing and maintaining PKI certificates for machines, identities, and applications.
  • Cloud Infrastructure experience and deployment of PKI at AWS/AzureP.
  • Experience with management vaulting solutions such as CyberArk or HashiCorp.
  • Hands on experience with Microsoft Online Certificate Services Provider (OCSP).
  • Experience preparing detailed architecture, design documents, authoring Certificate Polices and Certification Practice Statements (CP/CPS)
  • Holistic view of IAM (Authentication and Authorization Data, Endpoint Security, Network Security, Policy Engine)
  • Ability to utilize various programming or scripting languages such as Shell scripting, Perl, Python, JavaScript, HTML and PowerShell
  • Experience with alphabet soup, including OCSP, Microsoft PKI, EJBCA, SAML, Oauth, SSO, Federation, TLS/SSL, AD, ADFS, LDAP, PKI/PKE VPN encryption frameworks
  • 5 - 7 years of professional work experience in a related field such as Public Key Infrastructure, Infrastructure IT (Systems Administration, Network Administration Windows/Linux OS, Network Administration, Active Directory and/or Virtualization).
  • Self-starter/self-directed, able to multitask work and with minimum supervision.
  • Team player with Passion, drive, energy, a sense of humor, and a can-do approach!
Desirable:
  • Excellent verbal and written communication skills and experience writing technical documents such as guides, and other training material related to PKI.
  • Project/program management experience in enterprise PKI solution deployment, with use of Agile methodology and environments with automated pipelines
  • International experience beneficial; multiple language skills a plus
Education:
  • Bachelor's Degree in Computer Science, Engineering, Network Security or related field with a minimum of 7 years related experience
  • IT Certifications including Microsoft Certifications, CISSP, GIAC, Security+, and ITIL v3 Foundation certifications.
Certifications & Licenses:
  • CISSP
  • Experience preparing detailed architecture, design documents, authoring Certificate Polices and Certification Practice Statements (CP/CPS)
  • Hands on experience with Microsoft Online Certificate Services Provider (OCSP)
  • ITIL v3
  • Security+
Skills and Experience: Skills: Required
  • PKI INFRASTRUCTURE
  • ADFS
  • ACTIVE DIRECTORY
  • ARCHITECTURE
  • AUTHENTICATION
Additional
  • CISSP
  • DOCUMENTATION
  • ENCRYPTION
  • ENGINEER
  • GIAC
  • GOVERNANCE
  • HTML
  • ITIL
  • JAVASCRIPT
  • LDAP
  • LINUX
  • NETWORK ADMINISTRATION
  • OAUTH
  • PERL
  • PKI
  • PUBLIC KEY
  • PUBLIC KEY INFRASTRUCTURE
  • PYTHON
  • SAML
  • SCRIPTING
  • SECURITY
  • SELF-DIRECTED
  • SELF-STARTER
  • SHELL SCRIPTING
  • SSL
  • SSO
  • SYSTEMS ADMINISTRATION
  • SYSTEMS ENGINEER
  • TEAM PLAYER
  • VIRTUALIZATION
  • VPN
  • DEPLOYMENT
  • DISTRIBUTED SYSTEMS
  • EXCELLENT VERBAL AND WRITTEN COMMUNICATION SKILLS
  • Google Cloud Platform

Vacancy expired!

Subscribe for new vacancies
Report job