This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Our products, platforms and technologies are constantly evolving that’s why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues, and partners from increasingly sophisticated cyber threats. Whilst primarily working with our technology and engineering teams you will be expected to work with our wider teams across the UK, Italy, and Germany and participate in joint projects between Sky and Comcast. Join us and you’ll get involved in tackling challenges and future threats in an ever-changing cyber landscape. The Group Core Cyber Security team currently has a role for an experienced individual to join an ongoing PKI/ Certificate Management programme. You will work with internal teams across Sky to automate certificate management as well as with Comcast PKI team to integrate Sky infrastructure to the Comcast/Sky PKI managed service. This role is an exciting opportunity to join us on our journey, working within our Cyber Security team who are focused on delivering a wide variety of security capabilities to protect, and secure, a complex and ever-evolving environment. Responsible for supporting cryptographic services and certificate management processes across the organization. Supports the protection of sensitive data through secure encryption, certificate lifecycle management, and key management services. Identifies cryptographic weaknesses and vulnerabilities; performs analysis of certificate usage and encryption implementations across systems and platforms. Conducts assessments of PKI environments, certificate inventories, and cryptographic services. Identifies gaps in certificate lifecycle management and trust chains. Evaluates system configurations related to certificates, keys, and encryption. Performs root cause analysis on cryptographic issues and supports remediation. Resolves complex certificate, PKI, and cryptographic operational issues. Contributes to the design, development, and implementation of automation and tooling to support certificate lifecycle management and cryptographic services across enterprise environments. Works with moderate guidance in own area of knowledge.
Job Responsibility
Performs onboarding of systems and services to xPKI platforms in line with defined SLAs
Provides cryptography guidance and support to engineering and business teams
Produces and reports metrics related to certificate management and cryptographic services, ensuring alignment to organizational commitments
Supports and maintains PKI solutions and environments across the enterprise
Analyses the usage of certificates across business and infrastructure systems to identify risks and improvement opportunities
Maintains accurate certificate inventory and supports continuous improvement of asset visibility
Supports initiatives to prepare the organization for post-quantum cryptography (PQC)
Works with vulnerability management and security assessment teams to prioritize onboarding and remediation activities
Implements and supports automation of certificate lifecycle management processes across internal and external services
Supports awareness and education initiatives related to certificate management and cryptographic best practices
Performs or supports key ceremonies, business continuity and disaster recovery (BCP/DR) activities, and other cryptography-related workstreams
Identifies opportunities for process improvements and automation across cryptographic services
Performs certificate lifecycle operations, including issuance, renewal, and revocation activities
Supports investigation and resolution of operational issues related to certificates, encryption, and key management
Educates stakeholders on cybersecurity best practices, including certificate lifecycle management and cryptographic controls
Familiarizes self with company goals and strategies in order to achieve short-term goals with resolution
Strives to achieve personal goals and those set forth by management
Consistent exercise of independent judgment and discretion in matters of significance
Regular, consistent and punctual attendance
Must be able to work variable schedule(s) as necessary
Other duties and responsibilities as assigned
Requirements
Hands on experience of PKI systems and services, ACME protocol, use of RESTful APIs
Experience with Certificate Authority Administration, ADCS monitoring, and related tasks
Understanding in PKI machine identity technologies such as SSH, SSL, TLS
Experience supporting Key Management Systems (KMS) for cryptographic key security
A good knowledge and understanding of Information and/or Cyber Security
Good written and verbal communication skills to liaise with stakeholders at varying levels of seniority across the business
Knowledge of cybersecurity principles and practices and an understanding of security frameworks e.g., NIST, ISO27001
Hands on experience with PKI and Certificate deployment/automation and Thales HSMs
Good problem-solver, with the ability to tackle multiple tasks simultaneously
Being organized and diligent in using time and work management tools
A self-starter that is keen to get involved in teamwork, has strong interpersonal skills, and is hard-working and flexible
Open mind to learn new technologies, ability to analyze technical workflows and identify weak spots from cyber-security and operational point of views
Invested in a culture to self-learn and grow additional skillsets
Be curious to learn and share learnings and knowledge with the wider team
What we offer
Medical, prescription, vision, and dental insurance
401(k) savings plan with dollar-for-dollar matching up to the first 6% of your pay
Paid time off including eight observed company holidays and flex time
Exclusive perks + discounts, including tuition assistance, commuter benefits and more