HKA Enterprises
IT Architect Design & Implem. Specialist : 199275
HKA Enterprises, Greenville, South Carolina, us, 29610
NO Corp to Corp or 3rd party Recruiter submittals, please. W2 Contract with Full Time hours Client Title: IT Architect Design & Implementation Specialist Hours: 8:00 AM until 5:00 pm with 1-hour lunch Days: Monday through Friday Term of Contract: This position will be approved through December 31, 2026, with an annual review and extension process scheduled for next year. Pay Range OR Rate: 53.54-73.62 per hour. PTO, Sick Pay, and Holiday Pay are offered.
Position Scope This role leads the architecture, design, implementation, and management of enterprise-level Public Key Infrastructure (PKI) solutions, ensuring high availability, scalability, and security across global client group locations. Drives strategic PKI initiatives, including the adoption of new technologies and best practices.
Position Responsibilities
Architects and deploys Microsoft Active Directory Certificate Services (AD CS) components, including Certificate Authorities (CAs), Online Responders (OCSP), Certificate Revocation Lists (CRLs), and Network Device Enrollment Service (NDES).
Manages the full certificate lifecycle using advanced Certificate Lifecycle Management (CLM) platforms and Hardware Security Modules (HSMs).
Develops and implements automation scripts (PowerShell, Python) for PKI operations, certificate issuance, revocation, and monitoring.
Implements proof of concepts for PKI solutions.
Provides expert-level (Tier 3) support for complex PKI and Certificate Management incidents, performing root cause analysis and implementing permanent solutions.
Collaborates with cross-functional teams, including Product Owners, DevOps, and IT Security, to integrate PKI solutions into various applications and services.
Contributes to the overall security architecture, providing expert guidance on cryptographic standards, key management, and secure communication protocols.
Conducts comprehensive risk assessments for PKI deployments and develops mitigation strategies to ensure compliance with industry regulations and internal security policies.
Creates and maintains high-quality technical documentation, including design specifications, operational procedures, and test plans.
Conducts research on existing systems and devise solutions that work within those systems.
Responds to questions regarding PKI and Certificate Management capabilities and requirements.
Maintains a high-level understanding of the organization’s IT-Security processes and requirements.
Works on the delivery of DevOps User Stories within specified functional area(s).
Supports the roll-out and operation of global Public Key Infrastructure (PKI) and Certificate Management initiatives within the client group for multiple departments and all of the global locations.
Understands and models VPS (Value Added Production System) Principles and concepts of Standard Work and Problem Solving.
Adheres to 5S and Safety Standards and Principles.
Performs other duties as assigned by the Operations Supervisor.
Education Bachelor’s or Master’s degree in Computer Science, Information Security, or a related technical field.
Experience
6 years of hands‑on experience with Microsoft Active Directory Certificate Services (AD CS) – OR Equivalent platform, including design, deployment, and troubleshooting of Certificate Authorities (CAs), Online Responders (OCSP), and Network Device Enrollment Service (NDES).
3 years of expertise in certificate lifecycle management (CLM) platforms (e.g., Venafi, AppViewX, Keyfactor) and Hardware Security Modules (HSMs) (e.g., Thales, nCipher, Utimaco).
5 years of proven track record of successfully delivering complex PKI projects in large‑scale enterprise environments.
5 years of experience driving products from concept and ideation through successful launch.
5 years of experience working on a team employing standardized project delivery methods (Agile/Scrum development methods preferred).
5 years of experience in understanding and working with non‑functional requirements.
5 years of experience working in an enterprise environment.
Intermediate proficiency in PowerShell for AD Certificate Services administration and automation; experience with Python for security tool development is a plus.
Intermediate knowledge of (functional) testing methodologies and tools, including test automation.
Intermediate knowledge of root‑cause analysis, debugging methods, and diagnostic tools.
Intermediate knowledge of Databases and query language (e.g., SQL).
Intermediate knowledge of modern operating systems (especially but not limited to MS Windows and Unix/Linux derivatives).
Intermediate knowledge of IT Security and risk assessment.
Intermediate knowledge of certificate lifecycle management and Public Key Infrastructure.
Licenses and/or Certifications
Relevant industry certifications (or equivalents) such as CISSP, SANS GIAC (e.g., GSEC, GCWN), or Microsoft Certified: Azure Security Engineer Associate (preferred).
HKA Enterprises is a global workforce solutions firm. If you are seeking a new career opportunity or project experience, our recruiters will work to understand your qualifications, experience, and personal goals. At HKA, we recognize the importance of matching employee goals with those of the employer. We strive to seek credibility, satisfaction, and endorsement from all our applicants. We invite you to take time and search for your next career experience with us! HKA is an EEO Employer who participates in the US Citizenship and Immigration Services E-Verify Program.
#J-18808-Ljbffr
Position Scope This role leads the architecture, design, implementation, and management of enterprise-level Public Key Infrastructure (PKI) solutions, ensuring high availability, scalability, and security across global client group locations. Drives strategic PKI initiatives, including the adoption of new technologies and best practices.
Position Responsibilities
Architects and deploys Microsoft Active Directory Certificate Services (AD CS) components, including Certificate Authorities (CAs), Online Responders (OCSP), Certificate Revocation Lists (CRLs), and Network Device Enrollment Service (NDES).
Manages the full certificate lifecycle using advanced Certificate Lifecycle Management (CLM) platforms and Hardware Security Modules (HSMs).
Develops and implements automation scripts (PowerShell, Python) for PKI operations, certificate issuance, revocation, and monitoring.
Implements proof of concepts for PKI solutions.
Provides expert-level (Tier 3) support for complex PKI and Certificate Management incidents, performing root cause analysis and implementing permanent solutions.
Collaborates with cross-functional teams, including Product Owners, DevOps, and IT Security, to integrate PKI solutions into various applications and services.
Contributes to the overall security architecture, providing expert guidance on cryptographic standards, key management, and secure communication protocols.
Conducts comprehensive risk assessments for PKI deployments and develops mitigation strategies to ensure compliance with industry regulations and internal security policies.
Creates and maintains high-quality technical documentation, including design specifications, operational procedures, and test plans.
Conducts research on existing systems and devise solutions that work within those systems.
Responds to questions regarding PKI and Certificate Management capabilities and requirements.
Maintains a high-level understanding of the organization’s IT-Security processes and requirements.
Works on the delivery of DevOps User Stories within specified functional area(s).
Supports the roll-out and operation of global Public Key Infrastructure (PKI) and Certificate Management initiatives within the client group for multiple departments and all of the global locations.
Understands and models VPS (Value Added Production System) Principles and concepts of Standard Work and Problem Solving.
Adheres to 5S and Safety Standards and Principles.
Performs other duties as assigned by the Operations Supervisor.
Education Bachelor’s or Master’s degree in Computer Science, Information Security, or a related technical field.
Experience
6 years of hands‑on experience with Microsoft Active Directory Certificate Services (AD CS) – OR Equivalent platform, including design, deployment, and troubleshooting of Certificate Authorities (CAs), Online Responders (OCSP), and Network Device Enrollment Service (NDES).
3 years of expertise in certificate lifecycle management (CLM) platforms (e.g., Venafi, AppViewX, Keyfactor) and Hardware Security Modules (HSMs) (e.g., Thales, nCipher, Utimaco).
5 years of proven track record of successfully delivering complex PKI projects in large‑scale enterprise environments.
5 years of experience driving products from concept and ideation through successful launch.
5 years of experience working on a team employing standardized project delivery methods (Agile/Scrum development methods preferred).
5 years of experience in understanding and working with non‑functional requirements.
5 years of experience working in an enterprise environment.
Intermediate proficiency in PowerShell for AD Certificate Services administration and automation; experience with Python for security tool development is a plus.
Intermediate knowledge of (functional) testing methodologies and tools, including test automation.
Intermediate knowledge of root‑cause analysis, debugging methods, and diagnostic tools.
Intermediate knowledge of Databases and query language (e.g., SQL).
Intermediate knowledge of modern operating systems (especially but not limited to MS Windows and Unix/Linux derivatives).
Intermediate knowledge of IT Security and risk assessment.
Intermediate knowledge of certificate lifecycle management and Public Key Infrastructure.
Licenses and/or Certifications
Relevant industry certifications (or equivalents) such as CISSP, SANS GIAC (e.g., GSEC, GCWN), or Microsoft Certified: Azure Security Engineer Associate (preferred).
HKA Enterprises is a global workforce solutions firm. If you are seeking a new career opportunity or project experience, our recruiters will work to understand your qualifications, experience, and personal goals. At HKA, we recognize the importance of matching employee goals with those of the employer. We strive to seek credibility, satisfaction, and endorsement from all our applicants. We invite you to take time and search for your next career experience with us! HKA is an EEO Employer who participates in the US Citizenship and Immigration Services E-Verify Program.
#J-18808-Ljbffr