Top 25 U.S. digital financial services company committed to developing award-winning technology and services.
Named one of the top three fastest-growing banking brands in the U.S. in 2020.
Offers a full suite of products including mortgage lending, personal lending, and a variety of deposit and other banking products (savings, money-market, and checking accounts, certificates of deposit (CDs), and individual retirement accounts (IRAs)), self-directed and investment-advisory services, and capital for equity sponsors and middle-market companies.
Where permitted by applicable law, must have received or be willing to receive the COVID-19 vaccine by date of hire to be considered.
WHAT THEY OFFER YOU:
Fast paced, highly collaborative, teamwork-oriented environment
Make an immediate impact in this high visibility role
Ability to drive change within the organization with a focus on advancement in technology and programs
Top-notch leadership committed to developing people
THE BACKGROUND THAT FITS Principal Expectations:
Create enhancements or demands for improvements or modifications.
Process fulfillment requests (Service requests/Catalog tasks)
Manages all SSL/TLS Certificates associated with the prime Ally Certificate Authority (CA)
Monitor Public (External) and Managed PKI (Private/Internal) CA SSL/TLS Certificates for upcoming expiration dates
Monitor all expiry notifications from ServiceNow, Venafi and the CA Vendor to ensure no issues result from Certificate expiration
Track lifecycle for all SSL/TLS Certificates and SSH Keys in Venafi
Transition the lifecycle management process from service now to Venafi Aperture
Configure and setup SSL/TLS Certificates relationships within the CMDB to respective applications and servers
Revoke SSL Certificates which are no longer being used in both Managed PKI and Public CA portals, and update all associated ServiceNow/Venafi records accordingly
Interact directly with CA vendor/s and IT customers for troubleshooting of certificate and key related issues
Update and maintain runbook and process guides for requesting and distributing certificates to various applications teams
Distribute certificates for Windows and MAC OS machines which require PKCS #12 files which are Password protected and not using WNES servers for automatic push
Provide technical guidance moving some of the manual certificate provisioning process to a more automated method possible using tools such as Venafi, including some scripting experience.
Migrating and encrypting private keys from a public or internal CA into an HSM or Key Manager solution
27/7 support for troubleshooting Key and certificate issues
5+ years' experience working in Information Technology
3+ years' experience working in Security
Certification and experience in IT operational standards such as ITIL v3 preferred.
Experience working with the Venafi tool for enterprise Key and Certificate management lifecycle.
Ability to gather and convey information to stakeholders Strong analytical, technical writing and verbal communication skills.
Ability to influence change across a matrix organization and collaborate with business and technology teams to deliver solutions
Ability to effectively analyze Certificate Service Requests to ensure compliance with Standards and reduce certificate duplication
Understands how the IT group operates and how his/her role meets customer needs and creates value.
Knowledge of Ally Policies and work environment and tools
General knowledge regarding cryptographic methodologies and processes within IT organizations
Understanding of cryptographic keys, symmetric and asymmetric keys, cryptographic key algorithms and cipher blocks
Experience with using an HSM and/or Key Manager for any business encryption requirements
Experience in helping create new encryption enterprise solutions for current or upcoming IT Projects
Experience with migrating and encrypting private keys from a public or internal CA into an HSM or Key Manager
Ability to work in a fast-paced environment and must have good communication skills