Public Key Infra Engineer

Location: Hybrid - Guadalajara, Mexico

Required Skills:

Certificate Authority (CA) Management core, Active Directory and the platform authentication (Windows and Unix)
Certification Authorities, Two-Factor Authentication, MFA, LDAP Directories, OCSP, ICAM
Cryptography, key management, masking, tokenization, or other data protection technologies.
Deploying encryption technologies such as TLS, PGP, PKI, and HSM.
System security vulnerabilities and remediation techniques, including penetration testing methods
Agile development methodology (Kanban, Scrum).
Scripting - Python, along with shell scripting in KSH, Bash, and PowerShell
The candidate right for this role, Public Key Infrastructure Engineer would be responsible for ensuring the processes and controls are developed and implemented around the Certificate Authority (CA) Management core, Active Directory and the platform authentication (Windows and Unix). This role would work to develop and integrate the various tools to better automate and manage the Public Key Infrastructure and ensure auditability for management of these systems. This role is expected to work cross capability with Security and infrastructure to ensure full integration and automation.
Required Skills and Experience:

• Working within an agile development methodology (Kanban, Scrum, etc)
• Experience with continuous delivery and deployment.
• Experience assessing of data protection approaches, requirements, and activities.
• Certification Authorities, Two-Factor Authentication, MFA, LDAP Directories, OCSP, ICAM and the standards relating to them.
• Understanding of cryptography, key management, masking, tokenization, or other data protection technologies
• Experience utilizing and deploying encryption technologies such as TLS, PGP, PKI, and HSM
• Knowledge of system security vulnerabilities and remediation techniques, including penetration testing methods
• Experience with high-level script languages such as Python, along with shell scripting in KSH, Bash, and PowerShell.
Preferred:

• Demonstrated experience with server configuration management (infrastructure automation) tools (i.e. - Ansible, Puppet)
• Experience supporting enterprise server hardware (Dell or HP)
• Experience with Identity Management solutions such as IBM’s TIM/TAM
• Design and implement solutions for integration within client environments for various Red Hat products such as IdM (Identity Management), Satellite, RHV (Red Hat Virtualization), RHDS (Red Hat Directory Server), Ceph, etc.
• AWS Cloud experience
• Experience of designing, optimizing and troubleshooting public cloud platforms associated with large, complex application stacks
• 3 yrs+ working in a PKI environment and bonus points for working with AWS public cloud environments