Talent.com
Senior Public Key Infrastructure Security Engineer

Senior Public Key Infrastructure Security Engineer

Fisher InvestmentsRichardson, TX, United States
1 day ago
Job type
  • Full-time
Job description

Join the Fisher Investments Technology Department at an exciting time of growth and innovation! We are seeking a Senior PKI Security Engineer to play a critical role in supporting our Corporate Systems team. If you're passionate about building scalable solutions and want to make a significant impact as we navigate global expansion, we would love to hear from you!

The Opportunity :

As a leader in PKI / KMS / HSM / Certificates architecture and implementation, you will oversee the administration, operation, upgrade, and support of Certification Authorities (CA), Registration Authorities (RA), online responders, and Hardware Security Modules (HSM) within a Microsoft Windows-based enterprise Public Key Infrastructure (PKI). Your expertise will guide leadership in addressing PKI requirements and ensuring that our systems comply with Information Security policies, standards, and industry best practices.

You will report to the Vice President of Infrastructure Security.

Your Day-to-Day Responsibilities Include :

  • Developing and enhancing enterprise-wide certificate management services and PKI capabilities.
  • Creating detailed specifications for PKI / KMS infrastructure.
  • Providing strategic roadmap guidance and recommendations for current and future environments.
  • Maintaining and improving detailed procedures, policies, and work instructions for PKI & KMS administration.
  • Understanding and implementing SSH configurations and keys for authentication.
  • Utilizing technologies that rely on TLS / SSL encryption.
  • Representing PKI Engineering on project teams to ensure compliance with security policies.
  • Delivering successful Information Security projects by collaborating with stakeholders and project teams.
  • Staying updated on the latest technologies and industry trends, particularly in PKI / PKE.

Your Qualifications :

  • 8+ years of hands-on experience in deploying and managing certificate lifecycle management (KMS), PKI, Certification Authorities (CA), HSM, and Azure Key Vault.
  • Familiarity with Entrust, HashiCorp, Thales, DigCert, Venafi, and Keyfactor technologies.
  • Strong understanding of Information Security practices and CISSP domains.
  • Ability to identify improvement opportunities within the information security environment.
  • Expertise in PKI implementation and certificate lifecycle management.
  • Deep experience with HSM technology.
  • Proficient in MS Certificate Management Services and Active Directory Domain Services.
  • Expertise in SSL certificate management processes.
  • Experience in developing cloud solutions with Azure architectures related to PKI management.
  • Strong knowledge of PKI / HSM ecosystem and related standards.
  • Technical skills including Public Key Infrastructure, multi-factor authentication, Code Signing, Encryption, and Data Protection.
  • Bachelor's degree in Information Assurance, Computer Science, Cybersecurity, Information Systems, or related field.
  • Relevant security industry certifications (e.g., CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, Security+).

    • Why Fisher Investments :

    At Fisher Investments, we strive for a greater purpose : enhancing the investment landscape. We take pride in our inclusive culture and commitment to employee development. Our benefits reflect this commitment, including :

  • 100% coverage of medical, dental, and vision premiums for you and qualifying dependents.
  • 50% 401(k) match, up to IRS maximums.
  • 20 days of PTO, plus 10 paid holidays.
  • Family support programs, including paid leave, fertility assistance, and back-up care services.
  • This position is in-office, with potential eligibility for our hybrid work-from-home program based on role, tenure, and performance.

    • Fisher Investments is an equal opportunity employer.