Job Description :
Position: Security Engineer II (PKI & Cryptography)
Location: Greenwood Village, CO
Duration:12 Months
Comments:12 month contract - EFTPS clearance required
Job Description: Job Description
Cyber Security Engineer II.
The desired Security Engineer will be a member of the Global PKI and Certificates team. Primary responsibilities will include documenting, installing, configuring, administering, maintaining and integration support of PKI and Certificate systems. In addition, the Security Engineer will be required to:
Assist in the development, integration, implementation and support PKI / Certificate services globally
Be a technical subject matter expert for Certificate Solution (i.e. Venafi)
Perform technical leadership of multiple projects and meet deadlines
Lead the definition and implementation of POCs around PKI and other related technologies
Interact with Identity & Access Management teams to automate/standardize user access request process
Recommend improvements, corrections, remediation or requirements for associated projects
Create and maintain documentation for security related activities and metric reporting
Advocate Information Security standards and Industry best practices
Perform requirements gathering, design and implementation conforming to First Data’s methodologies, technical standards and strategies.
Analyze, plan, co-ordinate significant infrastructure updates and product upgrades with support teams
Recommend improvements, corrections, remediation or requirements for associated projects.
Interact with technical and business stakeholders across the Enterprise
Qualifications/Requirements:
5 years of experience in monitoring, developing and implementation of information security systems and software.
Working knowledge of cryptography, key management and security solutions.
Experience maintaining and operating Public Key and Certificate Infrastructure
Understanding of network concepts
Prior experience working with PKI discovery and management platform such as Venafi Enterprise Director a plus.
Strong understanding of Cryptography, Cryptographic functions and cryptographic standards
Understanding of PKI Policy, Life Cycle management and Auditing of PKI Infrastructure
Understanding and hands on Experience with hardware security Modules(HSM) Safenet or Thales a plus.
Familiarity with web technologies as it relates to Certificates
Experience with Certificate Policies and Certification Practice Statements
Experience with Entrust Security Manager and Active Directory Certificate Services (ADCS)
Experience planning and executing software and/or infrastructure upgrades with minimal service disruption
Strong infrastructure design and documentation skills
Experience with Microsoft Active Directory and LDAP directory integrations a plus.
Experience in defining standards, guidelines, leading practices, metrics and continuous validation of leading practices
Ability to propose, learn and deploy new security products as needed
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications
Ability to troubleshoot complex problems related to PKI infrastructure systems and resolve issues quickly identifying the best option in an emergency situation
Ability to work with different teams and interact with technical and business Owner Associates across the Enterprise
CISSP or similar certification is a Plus