TECHNICAL LEAD - Identity Management (LCM/RBAC)

Senior PKI Infrastructure Engineer

Years of Experience: 5-8 Years

Job Summary: We are seeking a highly skilled Senior PKI Infrastructure Engineer to lead the design, development, and implementation of complex Public Key Infrastructure (PKI) solutions. The ideal candidate will have extensive experience in managing PKI systems, ensuring compliance with industry standards, and integrating PKI with enterprise security platforms. This role requires a strong understanding of identity management, cryptography, and key management systems.

Responsibilities

Lead the design, development, and implementation of complex PKI infrastructures, including defining Certificate Policies (CP) and Certification Practice Statements (CPS).
Integrate PKI solutions with various enterprise systems and security platforms, including Active Directory Certificate Services.
Manage Hardware Security Modules (HSM) and Key Management Systems (KMS), overseeing the entire certificate lifecycle (issuance, renewal, revocation).
Develop strategies for secure key management and cryptography.
Ensure compliance with industry standards (e.g., NIST, FIPS) and regulations (e.g., GDPR, HIPAA).
Conduct regular audits and vulnerability assessments, proactively identifying and mitigating PKI-related risks.
Develop and implement PKI automation solutions, including scripting and certificate lifecycle management tools.
Provide technical support to the PKI and collaborate with cross-functional teams to integrate PKI with other security and IT initiatives.

Mandatory Skills

Proven experience in Identity Management, specifically in Lifecycle Management (LCM) and Role-Based Access Control (RBAC).
Strong knowledge of PKI concepts, including certificate lifecycle management and cryptographic protocols.
Experience with Azure Dedicated HSM and Key Management Systems (KMS).
Familiarity with compliance standards such as NIST, GDPR, and HIPAA.
Proficiency in scripting languages for automation (e.g., Python, PowerShell).

Preferred Skills

Experience with specific Identity Management tools (e.g., Okta, Microsoft Identity Manager).
Knowledge of PKI automation tools and certificate management solutions.
Experience in conducting security audits and vulnerability assessments.
Strong analytical and problem-solving skills.
Excellent communication and collaboration abilities.

Qualifications

Bachelor's degree in Computer Science, Information Technology, or a related field.
5-8 years of experience in PKI infrastructure management and identity management.
Relevant certifications (e.g., CISSP, CISM, or equivalent) are a plus.

Identity Management (LCM/RBAC)