Job Description

• Certificate Life Cycle Management - Issue, Revoke, Renew Certificate
• Issuing Certificate for Internal and External service Application from the Internal or Public CA based on requirement
• Communicate Stakeholders for renewal of certificate before Expiry
• Steps/Assistance to create CSR
• Assistance to Install certificate (on Microsoft servers\' basics (IIS, certificate binding etc)
• Responsible for providing monitoring ADCS Servers
• Regular health check of CA servers
• Monitoring CRL publishing dates
• Annual Renewal of Root CA and Issuing CA certificates
• Annual Publishing of Root CA CRL
• Troubleshooting Certificate related errors like -Certificate Trust, certificate validity, incorrect Certificate Purpose, incorrect hashing algorithm, enrolment issues etc
• Trouble Shooting CRL related issues- CRL publishing, CRL verification check
• Understanding on various method of generation of certificate requests and issuing certificate
• To identify need of certificate in an application and educating the stake holder with the appropriate Certificate requirement (e.g.-suggesting Wildcard, Multidomain etc certs depending on purpose)
• Addition/deletion/Modification of Certificate Template and setting up of permissions
• Certificate Auto enrolment configuration in coordination with AD Team
• CA server backup
• Trouble Shooting P2 and P1 Issues

Primary Skills

• PKI servers build and configuration
• Configure certificates for auto-enrolment
• Digicert

Secondary Skills

• Working knowledge of Active Directory and its integration with Microsoft PKI
• Good to have knowledge on Linux based PKI
• Key Management Service - Amazon Web Services (AWS) and Azure Key Management

Ref: 1778926Posted on: Apr 8, 2024Experience level: ExperiencedContract Type: PermanentLocation:Bangalore, TN, INDepartment: Cyber Security

Capgemini