Overview
Skills
Job Details
Role: Security Consultant
Location: Newark, CA 94560(remote with occasional travel)
Duration: 6 months contract with high possibility of extn
Urgent! - This resource will work fully remote. Work from home, but may need to come to the Lucid office on an as needed basis only.
Expected weekly hours: The consultant will be asked to work on an "As Needed" basis and max 10 hours per week and no overtime.
Eligible for expense: No unless travel approved and needed by Lucid.
Note: This role is only for 10 hours per week
ROLE AND RESPONSIBILITIES
As a PKI (Public Key Infrastructure) Engineer, you will be responsible for designing, implementing, and maintaining a secure public key infrastructure. Your specific role and responsibilities will include:
- Maintaining a secure public key infrastructure to support certificate-based authentication and encryption.
- Implement and maintain Code Signing infrastructure.
- Managing and maintaining digital certificates, including certificate authorities, root certificates, and intermediate certificates.
- Ensuring compliance with industry standards and best practices such as NIST guidelines.
- Managing and monitoring the issuance, revocation, and renewal of certificates.
- Implementing and maintaining secure certificate-based authentication and encryption protocols, such as SSL/TLS.
- Collaborating with other larger product engineering teams to ensure that the PKI infrastructure is integrated with other systems and processes.
REQUIRED QUALIFICATIONS:
o Bachelor's degree in Computer Science, Information Technology
o 6+ years of experience with public key infrastructure design and implementation.
o 4+ years of experience administrating and managing Hardware Security Modules.
o Strong understanding of certificate-based authentication and encryption protocols, such as SSL/TLS.
o Knowledge of industry standards and best practices. o Hands-on experience with digital certificate management, including issuance, revocation, and renewal.
o Strong technical skills in network security, firewall configurations, and VPN technologies.
o Knowledge of security and risk assessment methodologies, vulnerability scanning, and penetration testing.
o Hands-on experience with Unix based OS such as RedHat Linux, Ubuntu.
o Knowledge and experience with EJBCA and Sign Servers or other PKI applications such as Active Directory Certificate Services, and OpenSSL CA.
o Ability to work in a fast-paced, high-pressure environment and handle multiple projects simultaneously.
o Strong communication skills and ability to effectively interact with clients, stakeholders, and internal teams.
o Certifications in security, such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH), are highly desirable.
Preferred Qualifications:
o Experience managing EJBCA applications.
o Experience specifically managing Thales HSMs.
o Experience writing Python, Shell based scripts.
o Experience managing MySQL Databases.
o Experience with different WebServices protocols such as RESTAPI.