Job Description :
PKI Engineer

6+ Months

Plano 75024

United States

This is a crucial requirement related to the development of the overall PKI approach, design, architecture        and buildout of the PKI infrastructure adhering to the regional requirements and global standards.

Activities/Duties & Responsibilities: 

Develop the PKI Program specific outline for the connected cars security program
Identify, research and propose concepts and architectural areas of need specific to the PKI domain
Create, maintain and align the TMNA’s Security policies and standards with industry best practices and business needs in the adoption PKI and data protection technologies.
Development of technical security strategies related to PKI infrastructure
Development of technical security architectures related to PKI infrastructure
Development of technical security standards related to PKI infrastructure 
Administration, Development and Support

Operate PKI in compliance with WebTrust
Monitoring and troubleshooting Gemalto/SafeNet HSM on day to day basis
Monitoring and troubleshooting Microsoft Windows CA on day to day basis
Work with Infrastructure team on configuration management
Work with development team on integrating new/updated PKI services
Automation of tasks related to cybersecurity such as correlations, alerting, analysis, and event review processes
Integration of various tools and datasets to enhance detective and preventive control sets
Codified security principles for cloud (X-as-a-Service) systems integrated directly into application designs and blueprints/formations
Data exchanges with internal and external security intelligence platforms
Unique, custom software solutions to achieve security goals when COTS or OSS solutions are not available or viable
Software development experience/expertise to compliment product security and application security initiatives
Systems analysis and software development efforts that align with agile-related approaches

Education and Years of Experience: 

Bachelor’s degree or higher, in Computer Science, Engineering or related discipline, or equivalent professional experience

Required Skills/Certifications: 

Deep knowledge of Key Generation/Management/Key Ceremony
Secure Storage of Keys (HSM)
Knowledge of multi-tier CA for PKI
Hands-on experience in setting up, troubleshooting Gemalto/SafeNet HSM
Hands-on knowledge in setting up Microsoft CA
Creation of Services
NIST 800-57 (All parts) Knowledge
ISO21188/WebTrust Certification Requirement
FIPS 140-2 Standard Knowledge
Experience in setting up Monitoring using SNMP, SCOM, NetCool, Kafka etc.
Experience in Network, Firewall, Windows, and Linux Configuration Management
Experience in scripting languages like PowerShell
Experience in cryptographic library like OpenSSL
Experience in software development and delivery services, security engineering or other technical risk management skills.
Familiarity of modern development platforms such as: CD/CI,Git/Gerrit, Dockers, OpenStack, AWS, Azure, or Google Cloud platforms
Familiarity with programming languages such as: C, C++, Python, Ruby, .NET/PowerShell, Java/Javascript or other related languages.
Experience with web service development using REST