Posted 5 days ago
No clicks
**Senior Cryptography & PKI Engineer (TC-CS-Data Protection and Privacy)** Leverage 3-5 years in cybersecurity, specializing in cryptography and PKI, to drive enterprise security at EY. Perform end-to-end discovery of SSH keys, SSL/TLS certificates, and cryptographic assets across hybrid environments. Analyze patterns, identify gaps, and recommend secure lifecycle management strategies. Collaborate with cross-functional teams to evaluate and implement quantum-safe cryptographic solutions. Proficient in Venafi, AppViewX, Thales, Sectigo, MSFT AD-CS, and scripting languages like Python, Bash, and PowerShell. Strong understanding of cryptographic principles, PKI, SSL/TLS, SSH, and experience with Linux/Unix/Windows admin tasks. Familiarity with cloud platforms (AWS, Azure, GCP) and excellent communication skills required.
- Compensation
- Not specified
- City
- Not specified
- Country
- Not specified
Currency: Not specified
Full Job Description
At EY, were all in to shape your future with confidence.
Well help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.
Join EY and help to build a better working world.
Key Responsibilities
- Perform endtoend discovery of SSH keys, SSL/TLS certificates, and cryptographic assets across hybrid environments.
- Analyze key and certificate usage patterns, identify security gaps, and recommend remediation strategies.
- Support secure lifecycle management practices for SSH keys and SSL/TLS certificates, including rotation, revocation, and access controls.
- Conduct cryptographic discovery within applications, services, and infrastructure to identify cryptographic primitives and algorithms in use.
- Assess cryptographic posture and readiness of systems and applications against emerging quantum computing threats.
- Collaborate with architecture and engineering teams to evaluate and implement quantumsafe cryptographic solutions.
- Contribute to the development of security documentation, standards, and operational procedures.
Required Skills
- Minimum 35 years of experience in Cybersecurity, preferably in cryptography, PKI, or certificate lifecycle management.
- Handson experience with platforms such as Venafi, AppViewX, Thales, Sectigo, MSFT ADCS, or similar.
- Experience in discovery, assessment, and management of enterprise cryptographic assets.
- Strong understanding of cryptographic principles, PKI, SSL/TLS, SSH, and trust models.
- Familiarity with Linux/Unix/Windows administration, scripting (Python, Bash, PowerShell), and automation.
- Exposure to cloud platforms (AWS, Azure, GCP) and native key/certificate services.
- Strong communication, analytical, and collaboration skills.
EY | Building a better working world
EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.
Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.
EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
