Sr PKI Engineer

Work Schedule

Environmental Conditions

Job Description

Discover Impactful Work

As a Sr. PKI Security Engineer youll be part of our global Product Security team focusing on building operating and improving our Public Key Infrastructure (PKI) services. Youll work hands-on with certificate services key management and automation technologies to help operationalize these technologies for our products ensuring our enterprise can securely authenticate encrypt and protect data at scale.

A Typical Day

• Manage and enhance PKI-related technologies processes and workflows emphasizing automation and reliability.
• Work closely with architects and engineers to implement secure handling of private key material and ensure PKI is coordinated across enterprise systems.
• Implement and assist with new PKI applications aiding in the advancement of certificate services and key management procedures.
• Deploy and uphold robust encryption and key management solutions remaining proactive in addressing evolving needs (e.g. quantum-resistant algorithms).

Keys to Success

• Strong understanding of cryptographic functions algorithms and their implementation in real-world systems.
• Understanding of non-web use cases for PKI technologies including attestation offline/embedded distributed systems and Internet of Things (IoT).
• Hands-on experience deploying PKI workflows for encryption authentication digital signatures and secure connectivity.
• Proficiency in automating certificate issuance delivery and renewal across diverse environments while maintaining private key confidentiality.
• Skill in diagnosing and enhancing PKI-related processes with a focus on authentication and encryption.
• Passion for continuous learning and staying current with PKI and cryptography advancements.

Education

• Bachelors degree in cybersecurity computer science or related field with equivalent experience.
• Certifications not required but encouraged: CISSP or other PKI-related certifications a plus.

Experience

• 5 years of hands-on experience implementing and managing PKI systems in enterprise or product environments.
• Experience with and deep understanding of PKI specific automation technologies (e.g. ACME EST SCEP)
• Strong scripting and automation experience (e.g. Python PowerShell Ansible Terraform).
• Experience with enterprise PKI solutions HSMs and certificate lifecycle management tools.
• Familiarity with code-signing workflows and secure key delegation practices.

Knowledge Skills Abilities

• Proactive problem-solver with strong debugging skills in complex environments.
• Ability to deliver independently and collaborate effectively in a distributed team.
• Excellent written and verbal communication skills.
• Dedication to high-quality secure and reliable engineering practices.

Benefits

We offer competitive remuneration annual incentive plan bonus healthcare and a range of employee benefits. Thermo Fisher Scientific offers employment with an innovative forward-thinking organization and outstanding career and development prospects. We offer an exciting company culture that stands for integrity intensity involvement and innovation!