Capgemini
PKI Engineer
Capgemini, Trenton, New Jersey, United States,
The Analyst, Information Security Cryptography will play a key role in safeguarding the organization's systems, networks, and data. The position is responsible for aiding in the design and build of Information Security capabilities, participate in the management/operations of these capabilities, alongside supporting technologies. In addition, this role will be responsible for acting as a trusted resource for other analysts in the organization.Responsibilities:
Implement and provide ongoing DevSecOps/Operations support for a global secrets management service using Certificate Lifecycle Management/PKI solutions and various data protection technologies.Provide ongoing DevSecOps/Operations support for a global Information Security Cryptography Services program, which includes encryption, key/secrets management, tokenization, and various data protection technologies.Participate as one of several technical leads on a team of secrets management engineers.Participate in authoring, editing, providing, or reviewing documentation (procedures, standards) to ensure a well-managed and mature security infrastructure.Play a hands-on role in the engineering, implementation, and operations of security measures that protect the computer systems, networks, and information.Aid in disaster recovery planning and operations and data backups when needed.Provide Certificate Management activities, including:Certificate/Key Management Lifecycles (i.e., SSH, TLS Certificates).Certificate/Key Management Policy, Process, & Template Development.Documentation (Administrative & Technical).Managing User Issues with Certificates/Key Management Services.Metrics, Monitoring, and Reporting.Ordering Fulfilment / Queue Management.PKI Infrastructure Management.PKI Performance/SLA Reviews (Stakeholders).Provide day-to-day administration and support for infrastructure related to API, application security, firewalls, encryption, intrusion detection systems, PKI, secrets management, vulnerability scanning, security monitoring tools, penetration testing, authentication, web filtering, identity management, or access control systems, and associated logs/processes.Work closely with Information Security program manager, scrum master, and architects to convey technical impacts to development/engineering timeline and risks.Work independently in identifying opportunities to improve operational or other performance for Security, Information Technology and other functions across the Organization.Work with Information Security Architects, Engineers, API developers to drive program delivery.Work with Information Security leaders to drive secrets management development and standards across the organization.Serve as subject-matter expert to other team members in the Information Security organization.Perform other duties and/or special projects as assigned.Qualifications/Requirements:
Bachelor's degree in Computer Science/Engineering or related field OR High School Diploma/GED and a minimum of 4 years of experience in Technology with a minimum of 3 years in Information Security.Certifications in audit, big data, cloud, cybersecurity, governance, information security, privacy, risk preferred; AWS, Cloudera, GCP, GIAC, ISC2, ISACA.Excellent oral communication and writing skills. Adept at presenting complex topics, influencing and executing with timely/actionable follow-through.Proficient hands-on technical expertise with API, AWS, Cloudera, Docker, encryption, HashiCorp Vault, Kubernetes, Java, Linux, Perl, PKI, Protegrity, Python, secrets management, Thales/Vormetric, tokenization is strongly preferred.Proven ability to organize/manage multiple priorities coupled with the flexibility to quickly adapt to ever-changing business needs.Strong analytical and problem-solving skills with the ability to convert information into practical deliverables. Uses rigorous logic and methods to solve difficult problems.Desired Characteristics:
Ability to successfully manage working on multiple simultaneous projects.DevOps, Engineering and/or Operations background.Creativity and individual thinking, and the ability to work both with a team and unsupervised.Familiarity with problem and incident management, change management, notifications, and basic operational understanding of running and maintaining infrastructure.Good teamwork, oral and written communication.Good understanding of security landscape as a whole.Strong and efficient problem-solving and analytical skills, willingness to learn.Working experience in modern coding languages such as Python.Working experience with API development.Working experience with CI/CD pipelines.Working experience with Cryptography Management technologies.Working experience with Jenkins.Working experience with PKI, including CLM technologies.Working experience with secrets management technologies.Working experience with tokenization technologies.Understanding of various cloud deployment/service models from a development, infrastructure and information security aspect.
#J-18808-Ljbffr
Implement and provide ongoing DevSecOps/Operations support for a global secrets management service using Certificate Lifecycle Management/PKI solutions and various data protection technologies.Provide ongoing DevSecOps/Operations support for a global Information Security Cryptography Services program, which includes encryption, key/secrets management, tokenization, and various data protection technologies.Participate as one of several technical leads on a team of secrets management engineers.Participate in authoring, editing, providing, or reviewing documentation (procedures, standards) to ensure a well-managed and mature security infrastructure.Play a hands-on role in the engineering, implementation, and operations of security measures that protect the computer systems, networks, and information.Aid in disaster recovery planning and operations and data backups when needed.Provide Certificate Management activities, including:Certificate/Key Management Lifecycles (i.e., SSH, TLS Certificates).Certificate/Key Management Policy, Process, & Template Development.Documentation (Administrative & Technical).Managing User Issues with Certificates/Key Management Services.Metrics, Monitoring, and Reporting.Ordering Fulfilment / Queue Management.PKI Infrastructure Management.PKI Performance/SLA Reviews (Stakeholders).Provide day-to-day administration and support for infrastructure related to API, application security, firewalls, encryption, intrusion detection systems, PKI, secrets management, vulnerability scanning, security monitoring tools, penetration testing, authentication, web filtering, identity management, or access control systems, and associated logs/processes.Work closely with Information Security program manager, scrum master, and architects to convey technical impacts to development/engineering timeline and risks.Work independently in identifying opportunities to improve operational or other performance for Security, Information Technology and other functions across the Organization.Work with Information Security Architects, Engineers, API developers to drive program delivery.Work with Information Security leaders to drive secrets management development and standards across the organization.Serve as subject-matter expert to other team members in the Information Security organization.Perform other duties and/or special projects as assigned.Qualifications/Requirements:
Bachelor's degree in Computer Science/Engineering or related field OR High School Diploma/GED and a minimum of 4 years of experience in Technology with a minimum of 3 years in Information Security.Certifications in audit, big data, cloud, cybersecurity, governance, information security, privacy, risk preferred; AWS, Cloudera, GCP, GIAC, ISC2, ISACA.Excellent oral communication and writing skills. Adept at presenting complex topics, influencing and executing with timely/actionable follow-through.Proficient hands-on technical expertise with API, AWS, Cloudera, Docker, encryption, HashiCorp Vault, Kubernetes, Java, Linux, Perl, PKI, Protegrity, Python, secrets management, Thales/Vormetric, tokenization is strongly preferred.Proven ability to organize/manage multiple priorities coupled with the flexibility to quickly adapt to ever-changing business needs.Strong analytical and problem-solving skills with the ability to convert information into practical deliverables. Uses rigorous logic and methods to solve difficult problems.Desired Characteristics:
Ability to successfully manage working on multiple simultaneous projects.DevOps, Engineering and/or Operations background.Creativity and individual thinking, and the ability to work both with a team and unsupervised.Familiarity with problem and incident management, change management, notifications, and basic operational understanding of running and maintaining infrastructure.Good teamwork, oral and written communication.Good understanding of security landscape as a whole.Strong and efficient problem-solving and analytical skills, willingness to learn.Working experience in modern coding languages such as Python.Working experience with API development.Working experience with CI/CD pipelines.Working experience with Cryptography Management technologies.Working experience with Jenkins.Working experience with PKI, including CLM technologies.Working experience with secrets management technologies.Working experience with tokenization technologies.Understanding of various cloud deployment/service models from a development, infrastructure and information security aspect.
#J-18808-Ljbffr