It Risk And Security Engineer (Pki/Certificate Management)

This role is Contract to Hire !

Job Summary

The Cybersecurity Services domain protects DTCC from cybersecurity risks through world class security architecture, engineering and governance practices. Enterprise Certification Management Services (ECMS) team under Cybersecurity Services drives and improves Public Key Infrastructure (PKI) and certificate management across the entire DTCC technology estate. The ECMS team partners with other DTCC technology teams to design and implement PKI automation and standard methodology across the company. The successful candidate is someone who has solid attention to detail, as well as motivation to collaborate and share their technical knowledge around automation and security standard methodologies.

The main focus areas for the ECMS team are:

Ensures accurate inventory of the certificates in use in our environment

Creates and manages automation and workflows relevant for certificate management

Supports technology teams across DTCC for all aspects of certificate life-cycle management (Discovery, Generation, Distribution, Rotation and Revocation)

Your Primary Responsibilities:

• Design new certificate management services, integrations and technologies
• Identify automation opportunities for certificate lifecycle
• Document PKI and certificate management guidance for the company
• Acts as the domain specialist to help guide and shape how certificate management services are enabled
• Design processes and workflows for generation, rotation and revoking certificates

Your Talents Needed forSuccess

• Working knowledge of Jenkins and Chef would be a great plus
• Agile & Kanban methodologies
• Strong Information Security experience, specifically in PKI/Cryptography (on premise or cloud)
• Bachelor's degree required with Masters, or equivalent experience preferred
• Minimum of 3-5 years of related experience
• Solid experience in networking fundamentals, OS (Windows/Linux) security
• Solid experience with Python