Kubernetes Certificate Automation Engineer

Kubernetes Certificate Automation Engineer
Location: Remote
Hours: M-F 0800-1630 and on call
Pay Rate: Open to Both C2C and W2 options
Position Type: Multiyear Contract

Job Description:
• Collaborate with Cloud PKI Stakeholders to design and develop technical solutions on all areas of Cloud PKI architecture, strategies, automation and enforce governance & cryptographic standards
• Automate certificate deployments using cert-manager in Kubernetes environments
• Automate certificate deployments using Venafi onto server and appliance keystores and truststores
• Support certificate provisioning integration with infrastructure as code tools such as Ansible, Terraform and Chef.
• Support integration with secrets management tools such as Azure Key Vault , CyberArk Conjur and HashiCorp Vault.
• Work with DevOps Engineers to automate certificates in CI/CD processes
• Consult with members of business units and technical users to identify Cloud PKI requirements and develop requirements documentation
• Provide guidance to certificate owners on Cloud PKI life cycle, processes and procedures
• Process fulfillment requests (Service requests/Catalog tasks)
• Automate ServiceNow change tickets along with certificate installations
• Manages TLS Certificates associated with the Certificate Authority (CA)
• Monitor Public (External) and Managed PKI (Private/Internal) CA TLS Certificates for upcoming expiration dates to ensure no issues result from Certificate expiration
• Interact directly with vendors and IT customers for troubleshooting of certificate and key related issues
• Update and maintain documentation and process guides for requesting and distributing certificates
• Ability to provide tool and service training

Specific Qualifications:
• Proficient in managing certificate installation in Kubernetes environments, ideally using cert-manager to automate certificate installations for Ingress and Istio service mesh workloads.
• 3+ years hands-on certificate installation automation scripting and coding experience using Venafi REST API with scripting languages such as PowerShell .
• Kubernetes Developer and Administrator, Venafi Systems Administrator, CISSP and CCSP Certifications preferred
• Experience in application security and DevSecOps in CI/CD processes preferred
• Strong analytical, technical writing and verbal communication skills
• Ability to influence change across a matrix organization and collaborate with business and technology teams to deliver solutions that meet customer needs
• Ability to work in a fast-paced environment by supporting customers on production implementation and trouble shooting incidents