| Infrastructure Security Engineer (PKI & Certificate Management) ENGINEER :: Remote at Remote, Remote, USA |
| Email: [email protected] |
| From: Arun kushwah, Sibitalent [email protected] Reply to: [email protected] Hello, My name is Arun Kushwaha and I am a Staffing Specialist at Sibitalent. I am reaching out to you on an exciting job opportunity with one of our clients. Job Title Service Now PKI, Certificate Engineer Job Location Remote Duration 6+ Months Visa GC, USC Mode of Interview Phone/Skype Job description - Our Client is seeking a qualified contractor who can administer the organization's Certification Authorities (CA), Key Management Systems (KMS), and Public Key Infrastructure (PKI). As a Public Key Infrastructure (PKI)/Digital Certificate Administrator, you will play an integral role in administering a large-scale cloud-native enterprise, working alongside cross-skilled cloud engineers toward common goals to automate and constantly improve the technology security and operations of the organization. ESSENTIAL FUNCTIONS: Inventory, manage, and administer certificates across various teams and use cases: Internal Certificates (Windows PKI, Wireless Network, etc.) Cloud Service Provider Certificates (AWS, Azure, etc.) External Certificates (Digicert, GoDaddy, etc.) 3rd Party Managed Certificates (Fiserv, Bottomline, etc.) APIs / Integrations (MuleSoft, etc.) Code Signing / DEV Use Cases Platform Specific Certificates (ServiceNow, Salesforce, etc.) Associate security certificates with corresponding dependent systems within the CMDB. Lead efforts in the acquisition of new and renewal of existing certificates. Create, review, and process all documentation needed for certificate requests, modifications, renewals, or rekeys. Review the documentation that formally authorizes individuals to manage, submit, and receive PKI certificate requests to ensure it is up-to-date and accurate. Maintain and administer any local Certificate Authority, and intermediary Certificate Authority for client use. Manage, distribute, and maintain inventory of all PKI hard tokens issued by the organization. Administer Windows Active Directory Services, including CA, Certificate Enrollment Web Services, Certificate Enrollment Policy Web Service, and Internet Information Services (IIS). Establish security best practices/upgrades and be responsible for the overall health of the PKI Infrastructure. Identify certificate management process and infrastructure gaps and implement process improvements to increase operational reliability. Develop dashboards for alerting and monitoring to ensure awareness of certificate renewal, expiration, usage, etc. Participate in production support and on-call rotations. Participate in incident management and contribute to associated retrospectives/post-mortems as needed. Participate in Agile Sprints and associated ceremonies. QUALIFICATIONS (EXPERIENCE): Strong understanding of PKI certificate management with expertise in Certificate Lifecycle management toolsets such as ServiceNow Certificate Module, Sectigo, Venafi, etc. Experience with Amazon Certificate Manager (ACM) and Azure Key Vault. PKI experience, including hands-on experience with: Certificate Authority Administration Certificate Enrollment Web Service & Policy Web Service Active Directory Certificate Services (ADCS) monitoring Expertise in understanding PKI concepts (infrastructure & architecture). Experience implementing PKI in software engineering environments for purposes of code signing, API security, etc. Good understanding of CMDB, ITOM (IT Operations Management), Event Management. Understanding of Microsoft Active Directory, LDAP, WSUS, group policies, and DNS. Understanding of PKIX, PKCS, SSL, TLS, S/MIME standards. Passion for finding and improving efficiencies with infrastructure, development, and deployment automation. Strong knowledge of build, release, and configuration management practices. Understanding of and experience with the five pillars of well-architected frameworks. Knowledge of information security/governance controls. Experience with ServiceNow and the ServiceNow Certificate Management component is a plus. Experience with operational monitoring tools, such as New Relic, Datadog, Splunk, Sumo Logic, and/or Prometheus, is a plus. Experience with KMS (key management) and/or HSM technologies is a plus. Strong scripting experience (Python, Java Scripting, or PowerShell) is a plus. Strong communication and collaboration skills. Ability to work independently. Self-motivated. Ability to set own goals and manage toward them. Ability to effectively mentor team members/direct reports. Strong written and oral communication skills. Strong customer service skills. Thanks & Regards Sibi talent Arun kushwah | Technical Recruiter Direct : +1 19363102127 -127 : [email protected] Website : www.sibitalent.com Office : 101 E. Park Blvd., Suite 600, Plano, TX 75074 Keywords: access management information technology green card California Texas Infrastructure Security Engineer (PKI & Certificate Management) ENGINEER :: Remote [email protected] |
| [email protected] View all |
| Thu Nov 07 23:18:00 UTC 2024 |