Key Responsibilities

• Implementation of PKI setup (Root CA, Issuing CA, OCSP, AIA, CDP)

• Issuing the manually enrolled digital certificates (SSL/TLS, Code Signing)

• Troubleshooting the issues related to auto-enrolled certificates (User smartcard log-on, EFS, Client Authentication)

• Monitoring the CRL publication and taking necessary actions to keep CRL up to date.

• Managing Thales nCipher HSM for private key management in the enterprise PKI.

• Creating and publishing new certificate templates based on the requirement.

• Taking ownership of all issues related to PKI infrastructure.

• Performing health check of PKI servers and service to ensure availability.

• I am having good knowledge on encoding, hashing and cryptographic algorithms (Base64, SHA1, SHA256, RSA)

• Preparing guidance documents for creating CSR, installing certificates and binding with IIS.

• worked on migrating PKI setup from Windows 8 to Windows 16 servers.

• Automated certificate revocation using batch scripting.

• Created a batch file to issue bulk certificates at a time.