"Alerted.org

Summary

Responsible for overseeing, and coordinating all aspects of the public key infrastructure (PKI) service platform. Installs, configures, and maintains PKI applications. Perform key ceremonies and all digital certificate key life cycle events including, but not limited to validations, issuance, and revocations. This role involves ensuring the security and integrity of digital certificates, technical leadership and mentorship of PKI administrators, and collaborating with various departments to support secure communications and authentication. Ensures service levels agreement are met and that systems are properly monitored to ensure they are functional.

**Duties and Responsibilities include the following.** Other duties may be assigned.

+ Oversee the operation and maintenance of PKI systems, ensuring their availability, reliability, and security.

+ Provide Technical leadership, guidance, and mentorship to junior team members, ensuring best practices in PKI implementation and fostering a culture of continuous improvement and innovation.

+ Ensure integrity of Root key material.

+ Handle the issuance, renewal, and revocation of digital certificates. Ensure proper lifecycle management of certificates.

+ Install and maintain CA applications.

+ Provide third level support for customer support.

+ Assist with evaluating new products and emerging technologies.

+ Provide input on forecasting business needs and budgeting in support of PKI Operations

+ Remain current with technology and industry/market trends and apply to the design and management of PKI systems.

+ Assist with maintaining Business Continuity Planning (BCP) and testing plans to ensure redundancy and recoverability.

+ Coordinate with System Administrators and Developers in the development / implementation / changes related to CA applications.

+ Work with cybersecurity teams to implement and improve PKI security measures, ensuring compliance with industry standards and best practices.

+ Ensure PKI systems comply with relevant data privacy and protection frameworks.

+ Develop and maintain comprehensive documentation for PKI processes, procedures, and configurations.

+ Support the on-going maintanence of a quality assurance review process of key life cycle events and ceremonies.

+ Support efforts to provide direction towards the achievement of department goals and objectives

+ Help with providing capability reporting and PKI platform usage

+ Participate in on-call rotation

Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education and/or Experience

+ Minimum of 5-7 years of experience in managing PKI (Public Key Infrastructure) systems and related technologies, with at least 3 years in a technical leadership role.

+ Bachelor degree in Information Technology, Computer Science, or a related discipline. Candidates with equivalent education plus relevant work experience may also be considered.

+ Working knowledge of PKI systems including certificate authority (CA) services, key storage mechanism and hardware security modules (HSMs), validations services such as on-line certificate status protocol (OCSP), certificate revocation lists (CRL) and various deployment methods, i.e., LDAP, HTTP, etc.

+ Experience with identity-management, web-applications, OS-integration, network-security

+ Experience with document-signing, form-signing, data-protection, etc.

Language Skills

+ Ability to effectively communicate in the English language, both verbally and in writing.

+ Ability to read and interpret technical journals, specifications, international technical standards, etc.

Computer Skills

+ Experience with CA services, including CA’s, CRL’s, LDAP, and OCSP

+ Experience with web server certificate installations for SSL/TLS

+ Experience with UNIX and NT systems

+ Experience with Machine Identity Management software

+ Experience with remote computing security solutions, i.e. VPN and cryptographic solutions

+ Experience with Hardware Security Modules (HSM) and Key Management Systems (KMS)

+ Strong understanding of cryptography and PKI concepts

+ Experience with all aspects of Certificate life cycle events

+ Proficient in MS Office applications, such as Word, Excel, PowerPoint, etc.

+ Proficiency in scripting languages such as PowerShell

In addition to the above qualifications, successful candidates will also have the following profile:

+ Detail oriented

+ Trustworthy/Reliable

+ Good troubleshooting skills

+ Good project management skills

+ Proven leadership, problem-solving, and communication skills, with the ability to work collaboratively in a team environment.

+ Takes direction well and communicates well when there are questions

+ Willingness to be on a 24-hour on-call rotation

Work Environment

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

+ Employee works primarily in an office environment, within a well ventilated area, and is exposed to moderate noise levels

+ For all roles with job duties that can be performed effectively both inside and outside of an client site, local management and HR can approve, on average, up to 2 days a week working from home in line with business and team requirements. Additionally, temporary arrangements to work fully remote for up to 4 weeks per year can also be approved by the local manager and HR. An employee's direct manager has the sole discretion to select which 2 days of the week an employee may work remotely.

+ The direct manager and HR will manage individual, temporary exceptions and schedule changes to best meet employee and business requirements. Employees can also request adjustments to daily start and stop times or core hours required in the worksite with manager approval, as long as it meets the business needs.

+ The company reserves the right to end any flexible arrangement and request the employee to work standard work hours from a company worksite if deemed necessary or if the employee is unable to successfully perform their job duties.

+ Employees are expected to have the necessary equipment and workspace available to them outside the client facility to be able to work remotely. Equipment should not be taken from an client facility without proper tracking and approval from management. Except for the provision of standard working equipment (e.g., laptop, monitor), client will not reimburse an employee's expenses incurred while working remotely, such as, internet, utilities, and personal cell phone, unless required by applicable law or agreed to by an employee's direct manager.

Work Requirements

+ Must be a U.S. Citizen

+ Must be legally eligible to work in the United States.

+ Compliance to all relevant Client policies and procedures related to Quality, Security, Safety, Business Continuity, and Environmental systems.

+ As a Trusted Role, the candidate must agree to, and successfully pass a comprehensive background check to include:

+ Financial review (credit worthiness);

+ Civil review (public records, judgments, liens, etc.);

+ Criminal background check; and

+ Drug screening

ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.