Systems Architect

Description

● Collaborates with cross-functional teams, including Product Owners, DevOps, and IT Security, to integrate PKI solutions into various applications and services.

● Manages the full certificate lifecycle using advanced Certificate Lifecycle Management (CLM) platforms and Hardware Security Modules (HSMs).

● Contributes to the overall security architecture, providing expert guidance on cryptographic standards, key management, and secure communication protocols.

● Creates and maintains high-quality technical documentation, including design specifications, operational procedures, and test plans.

● Architects and deploys Microsoft Active Directory Certificate Services (AD CS) components, including Certificate Authorities (CAs), Online Responders (OCSP), Certificate Revocation Lists (CRLs) and Network Device Enrollment Service (NDES).

● Implements proof of concepts for PKI solutions.

● Develops and implements automation scripts (PowerShell, Python) for PKI operations, certificate issuance, revocation, and monitoring.

● Conducts research on existing systems and devise solutions that work within those systems.

● Works on the delivery of DevOps User Stories within specified functional area(s).

● Conducts comprehensive risk assessments for PKI deployments and develop mitigation strategies to ensure compliance with industry regulations and internal security policies.

Requirements

● 3+ years of expertise in certificate lifecycle management (CLM) platforms (e.g., Venafi, AppViewX, Keyfactor) and Hardware Security Modules (HSMs) (e.g., Thales, nCipher, Utimaco).

● 5+ years of experience working on a team employing standardized project delivery methods (Agile/Scrum development methods preferred).

● 10+ years of hands-on experience with Microsoft Active Directory Certificate Services (AD CS) -OR Equivalent platform, including design, deployment, and troubleshooting of Certificate Authorities (CAs), Online Responders (OCSP), and Network Device Enrollment Service (NDES).

● 5+ years of proven track record of successfully delivering complex PKI projects in largescale enterprise environments.

● 5+ years of experience driving products from concept and ideation through successful launch.

● 5+ years of experience in understanding of and working with non-functional requirements.

● Understands and models VPS (Value Added Production System) Principles and concepts of Standard Work and Problem Solving.

● 5+ years of experience of working in an enterprise environment.

Benefits

At Kyyba, the overall well-being of our employees and their families is important to us. We are proud of our work culture which embodies our core values; incorporating value, passion, excellence, empowerment, and happiness, creates a vibrant and productive atmosphere. We empower our employees with the resources, incentives, and flexibility that they need to support a healthy, balanced, and fulfilling career by providing many valuable benefits and a balanced compensation structure combined with career development.

It is the policy of Kyyba to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. If reasonable accommodation is needed, please contact Kyyba at 248-813-9665

Medical, dental, vision

Optional Identity theft plan

Term life

Long-term assignment with opportunity for hire by client

Optional Pre-paid legal plan

Work-visa sponsorship

Opportunity for advancement

Optional Medical and dependent FSA

Voluntary life and disability insurance

Training + Development

Interview process

Visa Sponsorship

Security clearance