Lead Infrastructure Engineer

Location

Mumbai | India

Job description

Job Profile Overview:

Nomura is looking for a Core InfrastructureEngineer specialising in Certificate Management & PKI infrastructure implementation. The rolewill be part of theSecurity Engineering functionwithin theGroupInfrastructureServicesgroup

TheSecurity& Core ServicesEngineeringfunctionis responsible for CoreServices andSecurity infrastructure componentsglobally.

Location

The role is located in Mumbai. The candidate is expected to work from Nomura's Mumbai office at Powai.

Role Overview

• Work ondefining strategy,design, deployment & automated management of Nomura's Certificate & PKI management infrainclose alignment & support of theoverallIT Strategy

.

• Role scope involves
  1. Define Certificate Strategy and Road Map for internal / external Certificate Management within Nomura
  2. Requirement gathering, framing & analysis,
  3. Evaluation &certificationof relevant vendor products
  4. Enterprise-scale design(build, test &validate)
  5. Detailed design, product &operationaldocumentation
  6. Integration into the bank's core platforms and eco-systems
  7. EnsureProductiondeployment atenterprisescale, working in close collaboration with relevant operationalcounterparts
  8. Automation of Certificate Life Cycle Management

• Lead role in defining Certificate Strategy in collaboration with Technical Domain Owner for both internal and external certificates.

• Ensuresuccessful delivery ofall relevantprojects and initiatives,working in close collaboration with other Engineering team members & Operational teams globally

• Drive the development & implementation of automation solutions, tooling and which provide for a controlled & secure framework for automation of the various tasks for this domain e.g.: issuance, renewal, and revocation of digital certificates, SSL Tests, Self -Service frameworks etc.

• Collaborate with relevant vendors as required for product evaluation and functionality mapping to cater to Nomura's certificate management requirements

• Facilitate the adoption of emerging technologies and industry trends& standards in theCertificatemanagement domain.
• Assist in developing engineering and operational service metrics with actionable plans to improve operational efficiency, enhance service quality/SLA, and optimize delivery.

Knowledge, Skills and Experience Required:

• 8-12 years of hands-on experience in a role responsible for engineeringPKI platforms. Experience should include CA Server operations, CRL publishing, Certificate templates management, Certificate Lifecycle management etc.
• Design & Implementation of Enterprise PKI solutions
• Should have an Automation first mind-set. Proven experience on automation of certificate management functions such as certificate installation, certificate revocation, automated tests etc.
• Strong understanding of the systems development life cycle methodology
• Ability to communicate effectively with team members, stakeholders, and management
• Ability to work well as part of a global team, and on their own when required
• Experience on working on projects i.e., requirements gathering, analysis, scoping, design, testing , validation, operational handover and Production roll-out

Knowledge, Skills and Experience Required:

• 8-12 years of hands-on experience in a roleresponsible for engineeringPKI platforms. Experience should include CA Server operations, CRL publishing, Certificate templates management, Certificate Lifecycle management etc.
• Design & Implementation of Enterprise PKI solutions
• Should have an Automation first mind-set. Proven experience on automation of certificate management functions such as certificate installation, certificate revocation, automated tests etc.
• Strong understanding of the systems development life cycle methodology
• Ability to communicate effectively with team members, stakeholders, and management
• Ability to work well as part of a global team, and on their own when required
• Experience on working on projects i.e., requirements gathering, analysis, scoping, design, testing , validation, operational handover and Production roll-out

Essential:

• Subject matter expert of digital certificate technology that includes all tiers in Certificate Authority (CA) hierarchy. This includes PKI infra setup, Certificate Management, CA Server operations, CRL publishing, Certificate templates management, Certificate Lifecycle Management etc.
• Strong proficiency in cryptography and usage of Private and Public key concepts including asymmetric key cryptography, X.509 standards, PKCS standards etc.
• Experience in developing Certificate Management process / procedure SOP
• Strong understanding of SSH, SSL, and PRI protocols and procedures.
• Strong understanding of Security concepts (data security & application security)
• Proficiency in automation using tooling & scripting. Ansible/ Python combination is preferable
• Knowledge of operating system fundamentals including diagnostics, tuning and monitoring of IO, Networks, CPU and Memory
• Good understanding of Core services such as LDAP, DNS etc.
• Good understanding of Cloud concepts and pubic cloud platforms
• Good understanding of Network fundamentals
• An industry recognized engineering and security certifications will be an advantage: CISSP, CISA, ISO27001, MCSE, RHCE, CCNE, CCSE
• Security/Authentication systems - Kerberos, eTrust/PKI

Competencies

• Strong sense of ownership and commitment
• Own & drive all mapped tasks & projects to successful completion in a time-bound manner
• Able to work both independently and collaboratively as part of a wider project team, as required.
• Strong communication skills (presentation, documentation etc.). Should be able to articulate technology solutions, roadmaps etc. to a global audience and stakeholders.
• Self-motivated and keen to learn and develop. Should be open to pick up and learn new skillsets as well be open to lateral move across technology platforms within Engineering. Nomura's Engineering objective is a multi-skilled and multi-technology experienced team
• Be able to work on multiple projects in parallel with appropriate prioritization

• Work Policy:
  Nomura operates in a Hybrid Working model with time split between Working from Nomura's Mumbai office at Powai and Working from Home. Working from Office is based on specific schedules and is intended to enable more collaboration and closer working synergies within the team.We expect the candidate is able to cope up with this kind of arrangement and is cognizant of the fact the working from office is the norm.

  Note: The flexible work model could further change and is dependent upon the company(Nomura Services India Pvt Ltd) policy and Govt. regulations.

Job tags

Salary