As a Senior PKI Engineer at Honeywell, this is your opportunity to join Honeywell Global Security PKI team and provide valuable, secure user experiences for Honeywell employees, partners, and customers.
Youll have the opportunity to work with the latest technologies and provide world-class engineering solutions with Microsoft and DigiCert Managed PKI, Multi-Factor Authentication (MFA) services, Hardware Security Modules (HSM), Hashicorp and Cloud-based Key Management Systems, ensuring that they align with direction set by best practices and defined standards within Honeywell.
Your job responsibilities in this key position will include: Incident/Problem management Manage incident/problem lifecycle including ticketing and stakeholder interaction Performs proactive problem management to identify and resolve potential issues related to the PKI and MFA environments Write and follow documented troubleshooting procedures for standard support situations Escalate to and collaborate with tier 3 support (i.e., Lead PKI Architect), when necessary Engineering Serve as a subject matter expert for MSPKI, MPKI, MFA, HSM and/or KMS services under the PKI services portfolio Working knowledge of MSPKI and MPKI Working knowledge of MFA Working knowledge of HSM’s Working knowledge of Key Management Systems Working knowledge of MS Windows operating systems Understand how the service works from a business/end-user/technical perspective Have command of the service including its capabilities and proper use Execute proof-of-concepts guided by Lead PKI Architect and Service Manager Complete assigned project/tasks in a timely manner Interact with key stakeholders and project/program teams to understand their requirements and engineer solutions based on best practices Ensure proper oversight for quality assurance of PKI artifacts Proficient in scripting especially PowerShell Enforce adherence to architectural standards/principles Proactively provide feedback regarding infrastructure PKI engineering methodologies, standards, and leading projects Minimize technical exposure and risk on projects Delivers and manages a highly available, stable, and secure PKI services environment Participates in the testing (e.g.
planning and execution) related to performance, disaster recovery, and business continuity for PKI services Analytical/Decision Making Responsibilities Understands the art of the possible, compares various architectural options based on feasibility/impact and proposes actionable plans Demonstrated strong analytical skills and technical problem-solving skills Analyzes and resolves complex issues (e.g.
performance problems and outages) to the PKI services environments, escalating to and working with vendors and clients as required Ability to analyze and operate at different levels of abstraction Ability to balance what is strategically right with what is practically realistic Evangelize optimal options based on documented best practices and standards Maintain accurate and timely tracking of activities Run book activities Monitor the service from both a functional and infrastructure perspective Execute service reports and gather/report metrics Address service problems Document changes and/or new activities Works under supervision of the PKI Manager, and interacts with Lead PKI Architect YOU MUST HAVE Bachelor’s degree 5 years developing, engineering, and implementing enterprise class IAM/security solutions.
WE VALUE Engineering/Hands-On knowledge with Microsoft and DigiCert Managed PKI, Multi-Factor Authentication (MFA) services, Hardware Security Modules (HSM), On-Premise and Cloud-based Key Management Systems (HashiCorp/CyberArk), Key Encryption systems (CipherTrust/KeySecure/Vormetric), CLM (Venafi/KeyFactor/AppViewX), Cloud (Azure/AWS).
Has strong understanding of PKI concepts Has experience supporting large and complex PKI services for Fortune 500 company Has hands on knowledge on design, build and deployment of PKI services Experience with Enterprise Gateway Servers Knowledge of Registration Authority Services & Agents Configure Auto-Enrollment Configure Certificate Profiles Authentication & Authorization types (Federation/SSO, LDAP/Kerberos, MFA) Troubleshooting experience with incident management and break fix PKI infrastructure availability Perform health checkup and regular monitoring of PKI services Scripting knowledge including bash, PowerShell, python etc.
Identity security best practices Results-focused visionaries that consistently deliver high-quality solutions.
Strong personal organization and project management skills.