Pki + Ejbca

Skills : PKI, EJBCA, Sectigo/Entrust/DigiCert, Symantec VIP, Okta, HSM, CyberArkExperience : 8 - 12 yrsLocation : All LTIM Office LocationsJob Description:-

Experience in maintenance/support of PKI Such as CA Server operations, CRL publishing, Certificate templates management-

Experience in Certificate LifeCycle management vendor platforms & through manual operations-

Create and maintain documentation on certificate installation guidelines-

Execute fulfillment requests to purchase or renew certificates for Internal/Public certificates-

Coordinate certification installations and revoke unused certificates with other technical teams to ensure no outage to devices and software-

Experience on Sectigo/Entrust/DigiCert public certificates-

Collaborate with the vendor and other technical teams as required to reach resolutions on any issues related to digital certificates-

Perform a regular audit or SSL test to ensure all devices and applications make the most secure communications based on industry standards-

Provide consultations on best practices using the SSL/TLS encryption protocols.-

Designing the internal AD integrated PKI service-

Experience on EJBCA PKI Service-

Support Active Directory (AD) integrated PKI service for different types of certificates used internally-

Coordinate the issuance, renewal, and revocation of digital certificates, ensuring compliance with industry standards and policies-

Subject matter expert of digital certificate technology that includes all tiers in Certificate Authority (CA) hierarchy-

Manage the successful technical delivery of Information Security projects and services for our customers by working directly with key business stakeholders, executives, and project teams.-

Represent PKI Engineering on organizational project teams and ensure adherence to existing security policies and standards-

Support the definition, design, and deployment of enterprise PKI systems-

Support senior engineering and design support required to build and maintain PKI systems.-

Designing the internal AD integrated PKI service-

Stay up to date with emerging trends and best practices in PKI and certificate management and make recommendations for improvements.-

Strong understanding of Cryptography specifically asymmetric key cryptography, X.509 standards, PKCS standards-

Hands on Experience in developing Certificate Management process / procedure SOP-

Strong understanding of SSH, SSL, and PRI protocols and procedures.-

Ability to track and bring issues to closure through co-ordination with several working groups.-

Strong proficiency in cryptography and usage of Private and Public key concepts-

Provide guidance and support to internal teams regarding the proper usage and implementation of digital certificates-

Experience in Symantec VIP-

Experience in Okta-

Experience in managing HSM-

CyberArk administration, configuration, implementations, designs, and troubleshooting Maintain CyberArk on a daily basis from a tier 3-4 standpoint Resolution of tier 2/3 trouble tickets including password rotations, password malfunctions, account creations, account changes, scheduling.-

Collaborate to define access control, user entitlements, and user access policy management Collaborate to develop and execute overall project plan and timelines for key deliverables Lead initiative to establish operational standards for secrets management service-

Good experience in implementation and integration of Cyber-Ark's Privileged Identity Management (PIM) Suite Experience with PAM Operational tasks - Defining Access Control, User Entitlements, Manage Applications Credentials, User Access Policy Management.

---