Senior Directory Services PKI Engineer

Overview

Hybrid
$120,000 - $150,000
Full Time

Skills

Senior PKI Venafi Windows Engineer
Senior Directory Services PKI Engineer

Job Details

***We are unable to sponsor for this permanent full-time role***

***Position is bonus eligible***

Prestigious Financial Institution is currently seeking a Senior Directory Services Engineer with strong Windows Engineering and preferably Venafi experience. Candidate will provide operational support for existing systems while designing solutions that enhance our security posture and support future services.

Responsibilities:

Administer Windows Server and directory services environments

Work with enterprise certificate services and PKI infrastructure

Oversee Azure Cloud identity services

Identify and remediate security vulnerabilities

Develop automation through PowerShell scripting

Plan for technology lifecycle management and EOL systems

Manage vendor relationships, licenses, and contracts

Adhere to change management requirements

Qualifications:

Knowledge of certificate lifecycle management using Venafi

Familiarity with certificate discovery, monitoring, and renewal processes

Understanding of machine identity management principles

[Required] Strong experience supporting Windows Server environments (2016, 2019, 2022)

[Required] Experience with Azure Cloud tenant administration and Entra ID identity management

[Required] PowerShell scripting knowledge

[Required] Experience working in a VMWare environment with Windows 10 clients

[Preferred] Experience with Venafi integrations with cloud platforms (particularly Azure)

[Preferred] Experience with Venafi's automation capabilities and integration with Microsoft PKI

[Preferred] Experience implementing or administering Venafi Trust Protection Platform (TPP)

Education and/or Experience:

[Required] BS in Computer Science or related field/experience

[Required] 5+ years of experience in Windows enterprise systems administration

[Required] Minimum 3 years' experience supporting enterprise Active Directory environment (AD Trust, Test/Dev Environments, LDAPS, GPO)

Certificates or Licenses:

[Preferred] Microsoft Certified: Azure Administrator Associate

[Preferred] Microsoft Certified: Identity and Access Administrator Associate

[Preferred] Microsoft 365 Certified: Enterprise Administrator Expert

[Preferred] Microsoft Certified: Azure Security Engineer Associate

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.