Technical Lead IV in Charlotte, North Carolina
Posted 06/13/22


  • Top 25 U.S. digital financial services company committed to developing award-winning technology and services.
  • Named one of the top three fastest-growing banking brands in the U.S. in 2020.
  • Offers a full suite of products including mortgage lending, personal lending, and a variety of deposit and other banking products (savings, money-market, and checking accounts, certificates of deposit (CDs), and individual retirement accounts (IRAs)), self-directed and investment-advisory services, and capital for equity sponsors and middle-market companies.
  • Where permitted by applicable law, must have received or be willing to receive the COVID-19 vaccine by date of hire to be considered.


  • Fast paced, highly collaborative, teamwork-oriented environment
  • Make an immediate impact in this high visibility role
  • Ability to drive change within the organization with a focus on advancement in technology and programs
  • Top-notch leadership committed to developing people

Principal Expectations:

  • Create enhancements or demands for improvements or modifications.
  • Process fulfillment requests (Service requests/Catalog tasks)
  • Manages all SSL/TLS Certificates associated with the prime Ally Certificate Authority (CA)
  • Monitor Public (External) and Managed PKI (Private/Internal) CA SSL/TLS Certificates for upcoming expiration dates
  • Monitor all expiry notifications from ServiceNow, Venafi and the CA Vendor to ensure no issues result from Certificate expiration
  • Track lifecycle for all SSL/TLS Certificates and SSH Keys in Venafi
  • Transition the lifecycle management process from service now to Venafi Aperture
  • Configure and setup SSL/TLS Certificates relationships within the CMDB to respective applications and servers
  • Revoke SSL Certificates which are no longer being used in both Managed PKI and Public CA portals, and update all associated ServiceNow/Venafi records accordingly
  • Interact directly with CA vendor/s and IT customers for troubleshooting of certificate and key related issues
  • Update and maintain runbook and process guides for requesting and distributing certificates to various applications teams
  • Distribute certificates for Windows and MAC OS machines which require PKCS #12 files which are Password protected and not using WNES servers for automatic push
  • Provide technical guidance moving some of the manual certificate provisioning process to a more automated method possible using tools such as Venafi, including some scripting experience.
  • Migrating and encrypting private keys from a public or internal CA into an HSM or Key Manager solution
  • 27/7 support for troubleshooting Key and certificate issues

Mandatory Skills:

  • 5+ years' experience working in Information Technology
  • 3+ years' experience working in Security
  • Certification and experience in IT operational standards such as ITIL v3 preferred.
  • Experience working with the Venafi tool for enterprise Key and Certificate management lifecycle.
  • Ability to gather and convey information to stakeholders Strong analytical, technical writing and verbal communication skills.
  • Ability to influence change across a matrix organization and collaborate with business and technology teams to deliver solutions
  • Ability to effectively analyze Certificate Service Requests to ensure compliance with Standards and reduce certificate duplication
  • Understands how the IT group operates and how his/her role meets customer needs and creates value.
  • Knowledge of Ally Policies and work environment and tools
  • General knowledge regarding cryptographic methodologies and processes within IT organizations
  • Understanding of cryptographic keys, symmetric and asymmetric keys, cryptographic key algorithms and cipher blocks
  • Experience with using an HSM and/or Key Manager for any business encryption requirements
  • Experience in helping create new encryption enterprise solutions for current or upcoming IT Projects
  • Experience with migrating and encrypting private keys from a public or internal CA into an HSM or Key Manager
  • Ability to work in a fast-paced environment and must have good communication skills
  • Employee Type: Contract
  • Location: Charlotte, North Carolina
  • Category: Information Technology
  • Date Posted: 06/13/22
Apply Today!
Apply Today!

Apply Today!

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!