Open to new opportunities!?! PKI Architect/SME with a large financial services and asset mgmt leader! FTE and hybrid to Plano, TX
Description:
As a PKI/KMS/HSM/Certificates Architect, Engineer, and Implementer you will be responsible for administration, operation, upgrade and support of Certification Authorities (CA), Registration Authorities (RA), online responders, and Hardware Security Modules (HSM) of a Microsoft Windows-based enterprise Public Key Infrastructure (PKI). You will take an active leadership role in maintaining and communicating PKI/KMS industry changes, advising and directing leadership to ensure that PKI requirements are addressed. You will ensure PKI systems align to the firms Information Security policies, standards, and the industry best practices. You will report to the Vice President, Infrastructure Security.
The Day-to-Day:
Build a mature enterprise-wide certificate management services and Public Key Infrastructure capabilities. Support the definition, design, and deployment of enterprise PKI system
Provide detailed specifications for PKI/KMS infrastructure
Provide roadmap guidance and recommendations to existing environment and future landscape (including the assessment & discovery work)
Maintain detailed procedures, policies, baselines, and work instructions for PKI & KMS administration, advise on improvements
An understanding of SSH, especially the configuration and use of SSH keys for authentication
Experience with technologies that heavily use TLS/SSL encryption
Represent PKI Engineering on organizational project teams and ensure adherence to existing security policies and standards
Manage the successful technical delivery of Information Security projects and services for our customers by working directly with key business stakeholders, executives and project teams
Keep up on current technologies and maintain awareness of industry trends and threats, focusing on PKI/PKE technologies
Your Qualifications:
8+ years of advanced hands-on experience in deploying, configuring, and managing certificated lifecycle management (KMS), Public Key Infrastructure (PKI), Certification Authorities (CA), Hardware Security Modules (HSM), Registration Authorities (RA), Root CA, Azure Key Vault, Thales, Venafi, Keyfactor, and Entrust integration experience (PKI/HSM/KMS/CRL/CRT)
Experience in Entrust, HashiCorp, Thales, DigCert, Venafi, Keyfactor
Individuals in this role must be well versed and educated in common Information Security practices and the CISSP domains, and have general Information Technology experience
You can use these experiences and education to identify opportunities for improvement of present information security environment, focusing on PKI, encryption, and certificate-based authentication solutions
Expert level experience with PKI implementation and certificate lifecycle management solution
Expert level experience with hardware security module (HSM) technology
Expert level experience in MS Certificate Management Services and Active Directory Domain Services
Expert level experience in SSL certificate management concepts, processes, and solution management
Expert level experience in cloud solution development with Azure architectures as it related to PKI management
Excellent knowledge in PKI / HSM ecosystem (technology, standards, implementations, & migration)
Technical Skills:
o Public key infrastructure
o Strong authentication / multi-factor authentication technologies
o CodeSigning
o Cryptographic services
o Encryption
o Certificate Management
o Data Protection
Bachelor's degree in Information Assurance, Computer Science, Cybersecurity, Information Systems or related field of study
Security industry certification is required including but not limited to CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, and Security+
Skills:
Palo Alto, Firewall, Cisco ASA, Penetration test, proxy
Additional Skills & Qualifications:
A min of 5+ years of advanced hands-on experience in deploying, configuring, and managing certificated lifecycle management (KMS), Public Key Infrastructure (PKI), Certification Authorities (CA), Hardware Security Modules (HSM), Registration Authorities (RA), Root CA, Azure Key Vault, Thales, Venafi, Keyfactor, and Entrust integration experience (PKI/HSM/KMS/CRL/CRT).
Experience Level:
Expert Level
About Us
Skiltrek is an award-winning IT staffing firm and the staffing partner of choice for many leading companies across the US.
At Skiltrek, we promise you the perfect opportunity of building technical excellence, understand business performance and nuances,
be abreast with the latest happenings in technology world and enjoy a satisfying work life balance.
Skiltrek is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender,
race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, veteran or military status, or any other category protected under the law.
Skiltrek is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.