PKI Engineer

Location: Must sit onsite in Camas, Washington or San Mateo, California- Open to Hybrid Candidates but at least 3 days a week onsite

• Lead and drive implementation of new PKI solution.
• 7 years exp in a security role
• PKI Implementation experience
• Lifecycle management experience
• Architecture experience

Role:
PKI/KMS/HSM/Certificates Architect, Engineer, & Implementer with minimal of 8 years of advanced hands-on experience in deploying, configuring, and managing certificated lifecycle management (KMS), Public Key Infrastructure (PKI), Certification Authorities (CA), Hardware Security Modules (HSM), Registration Authorities (RA), Root CA, Azure Key Vault, Thales, Venafi, and Entrust integration experience (PKI/HSM/KMS/CRL/CRT).
• Excellent knowledge in PKI / HSM ecosystem (technology, standards, implementations, & migration)
• Building a mature enterprise-wide certificate management services and Public Key Infrastructure capabilities. Supporting the definition, design, and deployment of enterprise PKI system.
• Ability to provide detailed specifications for PKI/KMS infrastructure.
• Administration, operation, upgrade and support of Certification Authorities (CA), Registration Authorities (RA), online responders, and Hardware Security Modules (HSM) of a Microsoft Windows-based enterprise Public Key Infrastructure (PKI).
• Provide roadmap guidance and recommendations to existing environment and future landscape (including the assessment & discovery work).
• Maintain detailed procedures, policies, standards, baselines, and work instructions for PKI & KMS administration, advise on improvements.
• Takes an active leadership role in maintaining and communicating PKI/KMS industry changes, advising and directing leadership to ensure that PKI requirements are addressed.
• Ensure PKI systems align to the firms Information Security policies, standards, and the industry best practices.
• An understanding of SSH, especially the configuration and use of SSH keys for authentication.
• Experience with technologies that heavily use TLS/SSL encryption.
• Represent PKI Engineering on organizational project teams and ensure adherence to existing security policies and standards.
• Manage the successful technical delivery of Information Security projects and services for our customers by working directly with key business stakeholders, executives and project teams.
• Keep up on current technologies and maintain awareness of industry trends and threats, focusing on PKI/PKE technologies.