Senior Security Architect Public-Key Infrastructure (PKI)

Job Description
The Senior PKI Architect in the IBM Security Services practice should be an advisor and expert who can present and implement Public-Key Infrastructures with limited oversight. The Senior PKI Architect should have depth of knowledge and experience in designing and implementing Public-Key Infrastructures. The PKI Security Architect should be familiar with state-of-the-art concepts in Cryptography and Identity & Access Management.

Tasks & accountabilities
Your main tasks and responsibilities will include:

  • Design and Implementation of Public-Key Infrastructures and related processes
  • Integration of PKI with Infrastructure Services (SSL/TLS for servers and other infrastructure components)
  • Integration of PKI with IT infrastructure business processes and components (CMDB, Identity & Access Management)
  • Development of technical security strategies related to PKI
  • Development of technical security architectures for PKI
  • Development of technical security standards related to use of cryptography, cryptographic keys, and digital certificates

Required Technical and Professional Expertise
  • 6-8 years of experience in designing and implementing Public Key Infrastructures (PKI) and related processes
  • 6-8 years of experience with integration of PKI and Identity & Access Management
  • 6-8 years of experience in designing and implementing PKI components (Certificate Authorities, Registration Authority, Certificate trust chains, CRL, OCSP)
  • 6-8 years of experience in designing and implementing processes for certificate lifecycle management (enrollment, request, renewal, revocation, archival, etc.)
  • Expertise in creating technical documentation of Architecture, Design, Use cases and Test cases
  • Experience as lead architect in at least three projects in PKI solutions with design, build, deployment, and support cycles
  • Experience with Lightweight Directory Access Protocol (LDAP)
  • Experience with Active Directory Certificate Authority
  • Experience with Commissioning of new CAs
  • Experience with PKI integration with HSMs (Hardware Security Modules)
  • Experience with Cryptographic services, Data Protection, Strong authentication / multi-factor authentication technologies
  • Experience with Enterprise-wide Key and Secret Management
  • Proven knowledge of state-of-the-art cryptographic algorithms (following NIST, ENISA etc) and FIPS 140-2 security levels
  • Experience with protocols such as TCP/IP, SSL/TLS, SSH, RDP, SFTP, S-MIME
  • Experience with integration with web service APIs (SOAP/Rest)
  • University degree in Information Technology, Electrical Engineering or similar Experience in IT and engineering
  • Ability to work in an international context and excellent communication skills
  • Interpersonal skills with the ability to establish and working relationships in a project-based / client-serving model, and to work closely with people at different levels of an organization
  • English is a mandatory language requirement

Preferred Professional and Technical Expertise
  • 6-8 years of experience in security consulting and systems integration
  • 6-8 years of experience in working across diverse teams to facilitate solutions
  • Professional Certifications, e.g. CISSP, CISA, CISM, CEH, CCNP, or equivalent and Product Certification (IBM Suite of IAM products / 3rd Party) are welcome
  • OpenGroup or other Industry Architecture Certification would be preferred

Additional benefits
  • Work for the best Security Company in Europe (SC winner 2016) and The Best Mobile Security Solution with IBM MaaS360 2016 SC Magazine Europe Awards
  • Training and certifications
  • Private medical package and insurance package
  • Multisport Card
  • Working on international projects in multicultural teams
  • Good to be an IBMer discounts
  • Cinema & trips for IBMers
  • Language classes
  • Summer camps for children

Find more about IBM Security Jobs:

Required Technical and Professional Expertise

see job description

Preferred Tech and Prof Experience

see job description

EO Statement
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Meet Some of IBM's Employees

Peter M.

Leadership Development Solutions Leader

Peter works with a variety of teams within IBM to increase organizational clarity, equip leaders to serve well, and provide opportunities for employees to continually grow and expand their skills.

Rashida H.

Director, IBM Watson Client Delivery

Rashida leads the IBM Watson Delivery Team, which focuses on providing Watson implementation training for clients around the world, helping companies achieve the solutions they seek.

Back to top