· Desired Experience Range : 5 years of overall IT industry experience, with minimum of 4 years in MS PKI and DLP technologies Desired Competencies (Technical Skillset/Behavioural Competency) Must-Have - Design, deploy, and manage enterprise PKI solutions, including root and subordinate CAs. - Administer and automate certificate lifecycle management using tools such as Sectigo - Exp. with Sectigo integration in an enterprise environment with tools such as ServiceNOW - Integrate PKI with identity and access management (IAM), network security, and endpoint protection systems, Cloud Infra. - Integrate with SIEM solution for log monitoring - Develop and enforce PKI policies, standards, and procedures. - Develop test cases Sectigo, test and validate their outcomes and results in new implementation / integration scenarios - Troubleshoot PKI-related issues across platforms (Windows, Linux, cloud). - Provide technical guidance and training to internal teams on PKI best practices. - Collaborate with vendors and stakeholders to ensure secure and scalable PKI architecture. · Strong hands-on experience in MS PKI and DLP implementation and operations. · Understanding of DLP policies and tools like DLP Symantec, Netskope and Imperva and Data Protection tool such as VERA and TITUS. · Architectural, deployment and support of complex PKI environments, emphasis on Microsoft Active Directory Certificate Services · Experience/strong in Microsoft Active Directory Certificate Services based PKI components (Certification Authority, Online Responder, Network Device Enrollment Services, Certificate Enrollment Web Services). · Knowledge of Active Directory and Active Directory Certificates Services · Experience/strong in PKI products especially MS PKI · Experience in Hardware Security Modules · Knowledge of Cryptography & Certificate Management System · Create, test, maintain and monitor maintain DLP policies for Microsoft 365 workloads and end points · HSM setup and administration with MS PKI (OS knowledge: Windows Server) · Experience with certificate-enabled applications, such as SSL/TLS, authentication, Code Signing, etc. · Supporting the design, build, and deployment of enterprise PKI systems. · Ensuring PKI systems comply with the relevant data privacy and protection frameworks and adhere to industry best practices. · Assessing and remediating the design and implementation of PKIs to mitigate risk. · Integrating items such as TLS inspection, IoT devices, and mobile device management (MDM) solutions. · Managing the configuration of PKI systems and testing PKI systems before production deployment. · Creating and maintaining system documentation. · Defining and improving PKI best practices. · Keeping up with industry trends and threats, particularly around PKI technologies. · Manage the successful technical delivery of Information Security projects and services for our customers by working directly with key business stakeholders, executives, and project teams
