For a detailed job description, please visit www.ngitservices.com
Responsibilities:
Manage the full Certificate Lifecycle: Oversee and execute all phases of certificate management, including request processing, generation, issuance, distribution, renewal, replacement, and timely revocation of various certificate types (SSL/TLS, S/MIME, code signing, client authentication, etc.).
Enforce PKI Policies and Procedures: Ensure strict adherence to established PKI policies, Certificate Practice Statements (CPS), and Certificate Policy
For a detailed job description, please visit www.ngitservices.com
Responsibilities:
Manage the full Certificate Lifecycle: Oversee and execute all phases of certificate management, including request processing, generation, issuance, distribution, renewal, replacement, and timely revocation of various certificate types (SSL/TLS, S/MIME, code signing, client authentication, etc.).
Enforce PKI Policies and Procedures: Ensure strict adherence to established PKI policies, Certificate Practice Statements (CPS), and Certificate Policy (CP) documents.
Troubleshoot and Resolve PKI Issues: Identify, diagnose, and resolve issues related to certificate validity, trust chains, revocation status (CRL, OCSP), key usage, and connectivity problems impacting PKI services.
Ensure PKI Security: Implement and monitor security controls to protect the PKI infrastructure, including securing CA private keys, managing access controls, and monitoring for suspicious activity.
Maintain Compliance: Ensure the PKI environment meets internal security standards, industry best practices, and relevant regulatory requirements (e.g., privacy laws, industry-specific regulations).
Qualifications:
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.1
5 years of experience in Information Technology, with a minimum of [Specify number] years focused specifically on Public Key Infrastructure (PKI) administration and support.
Deep understanding of PKI concepts, including X.509 certificates, certificate chains, trust anchors, certificate revocation (CRLs, OCSP), key usage, and extensions.
Hands-on experience with Certificate Authority platforms, such as Microsoft Active Directory Certificate Services (AD CS), and/or commercial CAs.
Solid understanding of cryptographic principles, including asymmetric and symmetric encryption, hashing, and digital signatures.
%20PKI Specialist)