Microsoft Security Engineer

Amazon Web Services, Authentication, Best practices, CISM, CISSP, Cloud, Communication skills, Information assurance, PKI, OCSP, HSM, Thales Luna HSM, CipherTrust Manager, Data security, IT, Infrastructure, Microsoft Windows Azure, Multi-factor authentication, Cyber security, Security engineering, Software deployment, Solution delivery, Solution management, SAN, SANS, SSCP, SSL, Security, Planning, Critical thinking, CodeSigning, Cryptographic
Full Time
Depends on Experience
Work from home available Travel not required

Job Description

Evolver is seeking a Microsoft Security Engineer (PKI) to join our team to support the client either in San Francisco or Remote from your location (working Pacific Time Zone hours). 


The Microsoft Security Engineer (RS) (PKI/KeyMgnt/Thychotic, Identity and Access Mgnt) drives Information Technologies (IT) security and productivity pillars by enabling secure connectivity for technical assets and devices within the global infrastructure through the creation and management of digital certificates.

The role drives complex design, development, and implementation activities aligned to a number of technologies including, but not limited to, Microsoft’s Public Key Infrastructure (PKI), Online Certificate Status Protocol (OCSP) infrastructure, Hardware Security Modules (HSM), Thales Luna HSM and CipherTrust Manager.

Primary responsibilities associated with this role are:

  • Support the definition, design, and deployment of enterprise PKI systems
  • Ensure PKI systems align to the firms Information Security policies, standards, and the industry best practices.
  • Manage the configuration of PKI systems, test PKI systems and/or components to ensure readiness for production deployment.  Create and maintain system documentation.
  • Represent PKI Engineering on organizational project teams and ensure adherence to existing security policies and standards.
  • Manage the successful technical delivery of Information Security projects and services for our customers by working directly with key business stakeholders, executives and project teams. Security engineers are the technical lead on initiatives and as such must drive the vision and alignment of the solution delivery.
  • Develop and improve PKI/PKE best practices
  • Keep up on current technologies and maintain awareness of industry trends and threats, focusing on PKI/PKE technologies.

Individuals in this role must be well versed and educated in common Information Security practices and the CISSP domains, as well as possess general Information Technology experience.  They must be able to leverage these experiences and education to identify opportunities for improvement in the firm’s present information security environment, focusing on PKI, encryption, and certificate-based authentication solutions.

Technical Skills: 

  • Public key infrastructure
  • Strong authentication / multi-factor authentication technologies
  • CodeSigning
  • Cryptographic services
  • Data Protection

Non-Technical Skills:

Individuals must possess leadership skills and capabilities commensurate managing professional relationships within a team, influence decisions based on data driven presentation and critical thinking, and the individual must have exceptional communication skills.

Desired skills include:

  • Expert level experience in MS Certificate Management Services and Active Directory Domain Services, Thales, Ciphertrust Data Security Platform.
  • Expert level experience in SSL certificate management concepts, processes, and solution management.  Direct experience with Venafi Trust Protection Platform is highly desirable.
  • Expert level experience with PKI implementation and certificate lifecycle management solution.
  • Expert level experience with hardware security module (HSM) technology.  Direct experience with Safenet HSM (Gemalto) platforms is highly desirable.
  • Expert level experience in cloud solution development with Azure or AWS architectures as it related to PKI management.

Education, Experience and Certifications:
- Bachelor’s or Master’s degree in Information Assurance, Computer Science, Cybersecurity, Information Systems or related field of study.
- Approximately 8+ years of experience in an engineering role.  Able to exhibit a progression of increasingly complex job responsibilities during the period inclusive of project management skills and engineering remediation techniques and planning.   
- One (1) security industry certification is required including but not limited to CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, and Security+.
- Remote Option from anywhere in the US, working Pacific hours 

Please apply on our web page,\careers\

Dice Id : 10123391
Position Id : 2021-3846
Originally Posted : 3 months ago
Have a Job? Post it