Infrastructure Security Engineer

Job Overview

Gruve is looking for an experienced Infrastructure Security Engineer specializing in Public Key Infrastructure (PKI) for our Device Management team. This role requires 2 to 5 years of hands-on experience in managing and administering internal and external PKI deployments. The successful candidate will oversee the PKI infrastructure using administration software such as Active Directory Certificate Services and AppViewX. A strong understanding of Change and Incident Management processes is essential, along with a willingness to work in a 24x7 shift rotation.

Key Responsibilities

• Demonstrate strong proficiency in cryptography and the practical application of private and public keys.
• Exhibit a solid understanding and practical experience in managing the full lifecycle of certificates, including SSL/TLS certificate issuance, renewals, and revocations.
• Possess a thorough understanding and hands-on experience with various methods of Certificate Signing Request (CSR) generation across platforms like Windows, Linux, and network appliances, and be adept at identifying certificate needs for applications.
• Provide expert guidance to stakeholders on appropriate certificate requirements, such as multi-domain and wildcard certificates.
• Accurately identify business requirements and issue certificates from both internal CAs (MSPKI) and external CAs (Sectigo) for diverse service applications.
• Leverage extensive working knowledge in the configuration and maintenance of Certificate Lifecycle Management (CLM) tools, with a preference for AppViewX.
• Contribute to the maintenance and support of PKI infrastructure, including CA server operations, Certificate Revocation List (CRL) publishing, and template management.
• Effectively track and resolve issues by coordinating with various working groups.
• Gain working knowledge of Hardware Security Modules (HSMs) and provide maintenance and support.
• Apply strong analytical and problem-solving skills to address security challenges.
• Work independently and take ownership of assigned tasks.
• Develop and maintain comprehensive documentation for PKI processes and procedures.
• Offer guidance and support to other IT staff and end-users on PKI-related matters.
• Demonstrate an understanding of ITIL processes.
• Showcase understanding and experience with incident, change, and service request management within ServiceNow.

Qualifications

• A Bachelor's or Master's degree in Computer Science or a related field.
• 2 to 5 years of relevant professional experience.
• Possession of CCNA, CCNP, MCSE, or an equivalent certification is required.

Preferred Qualifications

• Hands-on experience in the administration and ongoing maintenance (BAU) of internal and external PKI deployments.
• Experience in managing PKI infrastructure through administration software like AD Certificate Services and AppViewX.
• Proficiency in Change and Incident Management processes and a proven ability to work within a 24x7 shift environment.