Job Description:

Technical Experience

PKI Architect/SME PKI Solutions

As a PKI Architect Consultant will play an integral role in PKI Assessment, Certificate inventory, and PKI Architecture planning, selection, design, implementation, and operational guidance Will lead PKI solutions design and administration of large scale enterprise and commercial/publicly trusted PKI services Working on PKI Enterprise Public Key Infrastructure solutions,

PKI management, orchestration and governance, remediation and verification, certificate authorization, and integration with enterprise applications Analyze, plan, co-ordinate significant PKI infrastructure updates and product upgrades with support teams Pro-actively monitor and administer certificate usage/deployment/expiration and ensure compliance with corporate security standards Coordinate testing of changes/additions to the PKI infrastructure Support the definition of POCs around PKI, encryption and other certificate related technologies Document, recommend and review PKI and encryption related projects Gather business requirements, document architectural design and build/operate artifacts Drive the remediation, trouble shooting, resolution, and policy documentation process Work with information security leadership and cross-functional teams to develop strategies and plans to enforce security requirements and address identified risks Involved in planning the delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members Provides support and analysis during and after security incidents Provide PKI related installation and training documentation
Leads application security for the end-to-end platform This includes on-vehicle ECU and head unit components as well as cloud platform, service, and storage components
Evaluation PKI architecture, HSM, and Certificate Lifecycle Management solutions aligned to client needs
Design and Implementation Experience on PKI BYOK Key setup for O365, Cloud Application, HSM, Key Signing Ceremony
CA Root / Issuing, HSM architecture, design, preparation, Go live, and handoff to PKI Administration team
Good Knowledge in Azure Information Protection
Sound Knowledge on Azure Key Vault
Sound Knowledge on Cryptographic protection HSM - FIPS
Discovery and documentation of existing PKI elements; Internal / External Certificate Authorities (CA), Root CAs, subordinate/issuing CAs, Registration Authorities, Validation Authorities, CRLs, OCSP Responders, SCEP, Certificate Lifecycle Management tools or resources
Initial discovery of existing certificate inventories including; expiring, vulnerable or compromised keys and certificates that could impact operational uptime as well as machine identities
Development of a plan to do the following; Design and deploy an enterprise PKI architecture and certificate lifecycle management solution aligned with published best practices
Document processes and procedures relevant to management of PKI program
Gather PKI Certificate Encryption Business Use Cases, HA/DR, BCP requirements, and Assurance levels
Review Encryption policies / Draft new ones
Guide PKI Analyst in certificate scanning, discovery, ingestion, alignment to apps/systems owners, and remediation processes
Documentation of PKI / CLM Calendar of events, operational processes, incident response guides, checklists, and documentation templates, etc

Qualification and Requirement

Strong working experience with PKI infrastructure (Certificate Authorities (Root / Issuing), Registration Authority, Certificate trust chains and Certificate Revocation Lists, )
PKI Certificate lifecycle management experience Issuance, Inventory, Monitor, Remediation, Renewal
PKI experience with key and certificate management solutions
Experience maintaining and operating Public Key and Certificate Infrastructure
Experience with PKI (Certificate management) integration and operationalization
Understanding of PKI Policy, Life Cycle management and Auditing of PKI Infrastructure
Experience with Certificate Policies and Certification Practice Statements
Ability to troubleshoot complex problems related to PKI infrastructure systems and resolve issues
Understanding of SSL Certificates and deployment, maintenance, renewal of certificates from web servers, reverse proxy servers, application servers Experience with Microsoft Active Directory and LDAP directory integrations a plus
Experience supporting PKI systems that span multiple geographic regions and infrastructure providers
Experience with using HSMs (Hardware Security Modules) Gemalto, Thales, nCipher
Fluent with the following protocols TCP/IP, SSL, TLS, SCP and HTTPS Understand Lightweight Directory Access Protocol (LDAP) and how it is used
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications
Ability to work with different teams and interact with technical and business Owner Associates
Demonstrate excellent communication skills including internal and external customers
Ability to use strong industry knowledge to relate to customer needs and dissolve customer concerns and high level of focus and attention to detail
Strong work ethic Time management with ability to work with diverse teams and lead meetings
Background in Systems Administration of Windows, Linux, VM, Application and database servers
Strong infrastructure design and documentation skills
Assessment and design experience
Assist Sales team with Transition/transformation
Responsible to provide Solution, High level Design and Implementation of PKI
Installation and configuration of PKI infra for o365 and Azure and AWS Hosted Cloud Application
Design and Implementation of Exchange Hybrid/SFB Hybrid/MS Team
Sound Knowledge on Certificates
Good Knowledge on o365
Proficient in Microsoft O365
Knowledge on AD
Experience in PowerShell Scripts
Create new knowledgebase articles to capture new learnings for reuse throughout the support center

Salary Not Disclosed by Recruiter

IndustryIT-Software / Software Services

Functional AreaIT Software - Application Programming, Maintenance

Role CategoryProgramming & Design

RoleSoftware Developer


TCP SCP Application Security LDAP Infrastructure Design Architectural Design Windows Encryption SSL PKI

Desired Candidate Profile

Please refer to the Job description above

Company Profile

Apogee Services Private Limited

Apogee Services Private Limited

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Recruitment/Placement Agencies, Consulting Services
Functional Area : IT Software : Software Products & Services
Role : System Administration
Salary : As per Industry Standards
Deadline : 21st Mar 2020

Key Skills:

Company Profile:


Salary trends based on over 1 crore profiles

View Salaries

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd Protection Status