The PKI Engineer will Drive the development of PKI solutions to meet security and business requirements. The PKI engineer must possess a strong understanding of the concepts of cryptography such as Symmetric/asymmetric cryptography, Secure hash functions, Digital signatures, SSL/TLS Possess strong understanding of security best practices.
Responsibilities will include:
Developing and maintaining system orchestration to automate day to day processes
Developing and maintaining ad-hoc and automated data reporting as needed using vendor tooling or custom automation as appropriate
Creating and maintaining documentation for technical and administrative functions
Evolving the framework for system monitoring and develop tooling to automate notifications and generate reporting/metrics
Providing guidance for scoping complex, cross-organizational projects as needed
Develop automation approaches to solve PKI lifecycle challenges
Analyze legacy PKI solutions for security gaps and develop new approaches/capability to mitigate
Develop standards and approaches to enable seamless integration across technical stacks
Partner with architecture teams to understand security and business implications of PKI strategy
Act as a technical owner on initiatives involving PKI technologies
Champion PKI capability and integration across core security and IT
Develop and deploy solutions to ensure that Digital Credential Services are performing according to specifications, meet defined procedures, and comply with applicable information security policies and requirements.
Integrate applications and third-party products into internal services
Certificate Authority Administration
Certificate Enrollment Web Service & Policy Web Service
Active Directory Certificate Services (ADCS) monitoring.
Expertise in Public Key Infrastructure (PKI) machine identity technologies such as SSH, SSL, TLS.
Familiarity with Disaster Recovery process and Business Continuity procedures.
Experience in managing Key Management Systems (KMS).
Ability to design and implement solutions that optimize systems and processes
Proficiency with a scripting language such as Python or Powershell
Experienced in database configuration and SQL
Experience with workflow and API development
Ability to organize and rationalize complex data sets
Ability to perform light programming tasks using common programming languages such a java
3-5 years of experience working with PKI architecture
3-5 years of System Administration of Windows, Unix/ Linux
3-5 years of experience in infrastructure (security/systems/network) engineering and/or development
3-5 years in technology and/or project management leadership positions
Experience developing executive-level reporting and communications
Experience establishing and defining the scope of new teams or functions
Experience working in large complex environments (financial services a plus)
COVID-19 Protocols: Complying with State Street's COVID-19 protocols is a condition of employment. Those requirements may vary depending on circumstances and legal requirements, and may include, without limitation, a requirement to be vaccinated (or have an accommodation), to disclose vaccination status, to provide evidence of vaccination status, etc.