Description:
Skills and JD below:
- Design and implementation of Windows Active Directory Certificate Services, GPO for auto enrolment of device and user certificate. NDES, Certificate Enrolment Web Services, Certificate Enrollment Policy Web Service, Code signing certificate
- Design and implementation of certificate revocation servers like Online Responder service (OCSP) and Certificate Revocation List (CRL) servers.
- Strong knowledge on installation and configuration of CAs (both root and enterprise CAs)
- Working knowledge and experience in implementation and configuring HSM
- Hands-on experience in implementation and working on CLM tools and related use-cases. (Venafi, AppviewX or Key factor)
- PKI Migration Experience with troubleshooting abilities at domain level.
- Experience in working with X.509 PKI, Common PKI-based protocols, including SSL and TLS, HTTP, or LDAP
- Strong understanding of S/MIME, Wild Cards, SAN certificate; hashing standards like SHA-1/SHA-2
- Experience in working on PKI integration use-cases with HSM/KMS On-premises/cloud solution
- Promote best practices to ensure the risk profile is minimized and security posture is enhanced.
- Deep understanding of networking protocols such as TCP/IP & SSL and application protocols including HTTP, SMTP, FTP, SOAP, REST
- Candidates have experience in working with external CAs like GlobalSign, Digicert, Verisign, Key factor etc.
30 Apr 2025;
from:
uworkin.com