Principal Engineer - PlatSec Cryptographic Trust

About The Position

Requirements

• PKI Implementation: 8+ years of experience designing, deploying, and securing PKI systems, including certificate lifecycle management (issuance, renewal, revocation), TLS integrations, and cryptographic operations.
• Cloud Security Expertise: Hands-on expertise delivering PKI solutions in cloud-native environments (AWS, Azure, Kubernetes) and maintaining security within hybrid architectures.
• Post-Quantum Cryptography (PQC): Proven track record of transitioning systems to post-quantum cryptography standards and implementing advanced cryptographic algorithms (RSA, ECC, lattice-based cryptography).
• Automation & DevSecOps : Proficiency in streamlining PKI processes using automation tools (Terraform, Ansible) and scripting languages (Python, PowerShell) within DevSecOps frameworks.
• Advanced knowledge of PKI concepts, including certificate management (issuance, renewal, revocation) and cryptographic operations.
• Expertise in TLS protocols and secure certificate handling.
• Proficiency in cloud-native environments such as AWS, Azure, and Kubernetes for deploying and managing PKI services.
• Familiarity with post-quantum cryptography (PQC) and transitioning digital security systems to accommodate emerging PQC standards.
• Hands-on experience with automating PKI processes using scripting languages (e.g., Python, PowerShell).
• Deep understanding of security protocols, cryptographic algorithms, and key management practices.
• Knowledge of modern DevSecOps practices and automation tools (e.g., Terraform, Ansible).
• Experience in performance tuning, scaling, and troubleshooting PKI systems.
• Technical Leadership : Ability to guide teams in designing and implementing innovative PKI and PQC architectures.
• Problem-Solving : Aptitude for diagnosing and rectifying complex security and cryptographic challenges.
• Collaborative Communication : Strong interpersonal skills to work effectively across multidisciplinary teams and stakeholders.
• Strategic Thinking : Capability to align PKI solutions with long-term organizational goals while adapting to emerging trends.
• Adaptability : Skills to incorporate new advancements in cryptography and security into existing systems.
• Attention to Detail : Precision in configuring and managing cryptographic frameworks to eliminate vulnerabilities.
• Innovation : Drive to explore cutting-edge solutions in digital security and cryptography.

Nice To Haves

• 12 + years of hands-on experience in designing, implementing, and managing PKI infrastructure and certificate lifecycle management.
• Proven experience in cryptography, including TLS protocols, digital certificate operations, and key management.
• Strong background in cloud-native environments (AWS, Azure, Google Cloud, Kubernetes) for deploying secure PKI systems.
• Experience working with emerging standards around Post-Quantum Cryptography (PQC).
• Demonstrated experience with automation tools (e.g., Ansible, Terraform) and scripting languages (e.g., Python, PowerShell).
• Familiarity with security frameworks such as NIST, FIPS, or ISO 27001 related to cryptographic operations.
• Comprehensive understanding of protocols like X.509, OCSP, S/MIME, and LDAP in PKI implementations.
• Knowledge of cryptographic algorithms (RSA, ECC, AES, SHA) and PQC methods like lattice-based cryptography.
• Proficiency in implementing PKI solutions across hybrid environments ( on-premise and cloud).
• Experience in mentoring teams and providing technical leadership.
• Technical White Papers: Publication of research in cryptography, PKI, or PQC in renowned journals, conferences (e.g., IEEE, ACM, BlackHat , RSA C ).
• Patents: Authored patents in cryptography, innovative PKI solutions, or other digital security technologies demonstrating original contributions to the field.
• Certified Cryptography Engineer (CCE )/ Certified Cybersecurity Technician (CCT)
• Certified Information Systems Security Professional (CISSP)
• Certified Kubernetes Administrator (CKA)

Responsibilities

• Design , develop, and implement PKI, PQC, and digital security solutions to support business needs.
• Collaborate with cross-functional teams to integrate PKI services into F5 products and applications, focusing on TLS and certificate management.
• Automate PKI processes, including certificate issuance, renewal, and revocation, to optimize efficiency.
• Ensure the secure management of TLS certificates and cryptographic operations to maintain the integrity and reliability of systems.
• Deliver PKI services within cloud environments (AWS, Azure, Kubernetes) and oversee their scalability and performance.
• Provide expert technical guidance in designing PKI architectures with considerations for post-quantum cryptography (PQC) concerns.
• Act as a trusted advisor for PKI-related aspects in negotiations and interactions with internal and external stakeholders.
• Continuously monitor the performance of PKI systems to ensure availability, fault tolerance, and resilience.
• Stay updated on advancements in PKI, PQC, and digital security technologies, incorporating emerging trends into solutions.