Job Summary
Job Summary:
We are seeking a Level 2 PKI Engineer with hands-on experience in Internal Certificate Authority (CA) and Certificate Lifecycle Management (CLM). The candidate will be responsible for managing certificates, ensuring availability of PKI infrastructure, and supporting secure communication across enterprise environments.
Key Responsibilities
Key Responsibilities:
- Manage and support Internal CA infrastructure (Microsoft ADCS or equivalent)
- Perform certificate issuance, renewal, revocation, and lifecycle tracking
- Monitor and manage CLM tools and certificate inventories
- Troubleshoot certificate-related issues across servers, applications, and network devices
- Ensure compliance with PKI policies and security standards
- Maintain CRLs, OCSP configurations, and certificate repositories
- Assist in onboarding applications and systems to PKI services
- Perform root cause analysis for certificate failures and outages
- Generate reports on certificate status, expiry, and compliance
Skill Requirements
Required Skills:
- Hands-on experience with Internal CA (Microsoft ADCS preferred)
- Experience in Certificate Lifecycle Management (CLM)
- Understanding of encryption, key management, and digital certificates
- Knowledge of TLS/SSL protocols and certificate usage
- Familiarity with Windows/Linux environments
- Strong troubleshooting and analytical skills
Other Requirements
Good to Have:
- Experience with HSM integration and key protection
- Knowledge of automation/scripting (PowerShell, Python)
- Exposure to cloud PKI (Azure/AWS Certificate Manager)
Certifications (Preferred):
- Microsoft Security Certification (SC-300 / SC-400)
Soft Skills:
- Good communication and stakeholder interaction
- Ability to work in 24x7 operational environment
- Strong documentation and reporting skills