Back to search results

Systems Engineer (PKI)

Addison, Texas;

Job Description:

Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

Position Overview: Public Key Infrastructure (PKI) Certification Authority (CA) Hardware Security Modules (HSM) Administrator to join our team.

Responsibilities:
•    Administration, operation, upgrade and support of Certification Authorities (CA), Registration Authorities (RA), online responders, and Hardware Security Modules (HSM) of a Microsoft Windows-based enterprise Public Key Infrastructure (PKI). 
•    Ensure alignment with all PKI compliance and best practices. 
•    Implement, operate and maintain physical and virtual machines in production and disaster recovery locations. 
•    Interface with vendors that provide security/encryption related services 
•    Participate in defining and developing the strategic plan for PKI for the enterprise 
•    Lead the definition and implementation of POCs around PKI, KMS and other certificate related technologies 
•    Ensure 247 uptime of the PKI services 
•    Design, test, and implement changes/additions to HSMs in the PKI Infrastructure 
•    Responsible for all engineering aspects of the company s PKI including: Internally and externally hosted Certification Authorities (CAs) and Registration Authorities, The enterprise certificate management system 
•    Enterprise Code Signing Services, Consulting around cryptographic technologies, Hardware Security Module (HSM), NDES servers 
•    Design and implement software systems in Windows that solve or automate the solving of complex networking and security problems. Requires a thorough understanding of Windows internals in order to meet very specific security and networking requirements. 
•    Apply expert-level knowledge of public key infrastructure (PKI) to design and develop solutions to customer problems. 
•    Apply a thorough understanding of the basics of IP networks and their workings (DNS, Security, IP Routing, HTTP, VPN, etc.) 
•    Generate detailed requirements and design documents and user manuals for products 
Skills, Experience & Qualifications: 
•    Experience with Microsoft Windows Certification Authorities, in a CA Admin role 
•    3+ years System Administration experience 
•    Experience with Hardware Security Modules (HSM) and public key infrastructure (PKI) for certificate management. 
•    Practical knowledge of cybersecurity issues, vulnerabilities and defenses 
•    Self-starter and can work independently. 
•    Possess expertise in both written and interpersonal communication, and in collaboration in a cross-functional team comprised of diverse personalities, skill sets, and levels of experience. 
•    Experience in Software documentation, software packages, support and/or training of IT systems 
•    Excellent troubleshooting abilities 
•    Good end-user communication skills. 
•    Background in IT Security
 

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

Position Overview: Public Key Infrastructure (PKI) Certification Authority (CA) Hardware Security Modules (HSM) Administrator to join our team.

Responsibilities:
•    Administration, operation, upgrade and support of Certification Authorities (CA), Registration Authorities (RA), online responders, and Hardware Security Modules (HSM) of a Microsoft Windows-based enterprise Public Key Infrastructure (PKI). 
•    Ensure alignment with all PKI compliance and best practices. 
•    Implement, operate and maintain physical and virtual machines in production and disaster recovery locations. 
•    Interface with vendors that provide security/encryption related services 
•    Participate in defining and developing the strategic plan for PKI for the enterprise 
•    Lead the definition and implementation of POCs around PKI, KMS and other certificate related technologies 
•    Ensure 247 uptime of the PKI services 
•    Design, test, and implement changes/additions to HSMs in the PKI Infrastructure 
•    Responsible for all engineering aspects of the company s PKI including: Internally and externally hosted Certification Authorities (CAs) and Registration Authorities, The enterprise certificate management system 
•    Enterprise Code Signing Services, Consulting around cryptographic technologies, Hardware Security Module (HSM), NDES servers 
•    Design and implement software systems in Windows that solve or automate the solving of complex networking and security problems. Requires a thorough understanding of Windows internals in order to meet very specific security and networking requirements. 
•    Apply expert-level knowledge of public key infrastructure (PKI) to design and develop solutions to customer problems. 
•    Apply a thorough understanding of the basics of IP networks and their workings (DNS, Security, IP Routing, HTTP, VPN, etc.) 
•    Generate detailed requirements and design documents and user manuals for products 
Skills, Experience & Qualifications: 
•    Experience with Microsoft Windows Certification Authorities, in a CA Admin role 
•    3+ years System Administration experience 
•    Experience with Hardware Security Modules (HSM) and public key infrastructure (PKI) for certificate management. 
•    Practical knowledge of cybersecurity issues, vulnerabilities and defenses 
•    Self-starter and can work independently. 
•    Possess expertise in both written and interpersonal communication, and in collaboration in a cross-functional team comprised of diverse personalities, skill sets, and levels of experience. 
•    Experience in Software documentation, software packages, support and/or training of IT systems 
•    Excellent troubleshooting abilities 
•    Good end-user communication skills. 
•    Background in IT Security
 

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-21067429

Band: H5

Manages People: No

Travel: Yes, 5% of the time

Manager:

Talent Acquisition Contact:

Nicolas Skaric

Referral Bonus:

0

Colorado job seekers

Colorado pay range:

$82,000 - $140,000 annualized salary, offers to be negotiated based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.