PKI Consultant

Job summary

Provide consulting services for DigiCert PKI, IoT and Signing solutions.

What you will do

• Participate in pre-sales meetings to understand customer needs and create statements of work
• Deploy & configure DigiCert PKI/IoT/Signing solutions and create final project deliverables
• Demonstrate a deep technical understanding of DigiCert PKI/IoT/Signing solutions & architecture
• Effectively manage projects through planning, tracking and reporting and provide periodic updates to key stakeholders
• Create custom documentation, entity-relationship models, networking diagrams, etc. related to DigiCert PKI/IoT/Signing solutions as needed
• Capture feature request input from prospects/customers and provide to Product Management teams
• Proactively engage in Professional Services process improvement initiatives and contribute to creating reusable templates and checklists
• Serve as a trusted advisor on PKI and digital trust issues
• Provide ongoing guidance and education to DigiCert field teams, sales personnel, partners, and customers on PKI and best practices, ensuring they understand and implement these principles effectively
• Travel to customer sites and industry forums/conferences as needed to support the objectives of the department
• Deliver engaging presentations on technical topics at field events, including conferences and seminars

What you will have

• Degree in Systems Management, Computer Science, or Cybersecurity, or CISSP certification, along with 3+ years of experience in cybersecurity, focusing on PKI
• Fluent in writing and speaking English
• Strong technical writing skills
• Excellent written and verbal communication skills, as well as interpersonal skills
• Ability to work independently and collaboratively with other team members
• Strong analytical and problem-solving skills
• Firm understanding of cryptographic concepts including symmetric/asymmetric cryptography, hash algorithms, digital signatures, encryption, etc.
• Strong knowledge of PKI concepts, practices & protocols
• Capable of articulating PKI best practices and industry trends related to digital trust clearly and effectively
• Experience with certificate enabled applications, such as SSL/TLS, S/MIME, Code Signing, 802.1x, EAP-TLS, etc.
• Knowledge of hardware security modules (HSMs), secure chips, and secure key storage
• Experience with virtual machines and hypervisors
• Hands-on experience using and managing Windows Server 2019+ and/or Linux servers
• Strong understanding of computer networking and TCP/IP
• Working knowledge of Active Directory, Group Policy and LDAP
• Comfortable and experienced using REST APIs, .Net, Java, C, and/or Python
• Knowledge of Containerization, Kubernetes Container orchestration and Container Clustering
• Hands on experience with setting up certificates on routers, load balancers, SSL inspection devices and web services like Microsoft IIS, Apache and Tomcat

Nice to have

• Recent experience in a services delivery role as a Professional Services Engineer, Consultant, Resident Engineer, or Solutions Architect
• Hands-on experience using and managing MariaDB, Oracle, SQL Server, Kubernetes and Docker
• Hands-on experience with Microsoft Active Directory Certificate Services (AD CS) and related components
• Skilled in developing PowerShell and Unix scripts
• Familiarity with OpenSSL, cURL and SQL statements
• Working knowledge of leading CLM solutions
• Hand-on experience with certificate discovery tools, both agent-based and agentless, for TLS automation
• Familiarity with deploying and configuring applications on cloud providers such as Azure, AWS, Google Cloud, and Oracle Cloud
• Familiarity with configuring single sign-on (SSO) using SAML and OpenID
• Hands on experience with Unified Endpoint Management (UEM) solutions like Microsoft Intune, Omnissa (VMWare) Workspace ONE UEM, Jamf Pro, Ivanti MobileIron, IBM MaaS360, etc.
• Hands on experience with signing applications using code signing certificates
• Familiarity with DevOps and CI/CD pipelines
• Hands on experience with hardware security modules (HSMs), including setup and deployment with high availability

Digicert offers a competitive benefits package for all of our full-time employees. 

DigiCert is an Equal Opportunity employer and is committed to diversity in its workforce. In compliance with applicable federal and state laws, DigiCert prohibits discrimination on the basis of race or ethnicity, religion, color, national origin, sex, age, sexual orientation, gender identity/expression, veteran’s status, status as a qualified person with a disability, or genetic information. Individuals from historically underrepresented groups, such as minorities, women, qualified person with disabilities, and protected veterans are strongly encouraged to apply.