Manager, Cybersecurity Engineering, PKI

Hyderabad, Telangana
Permanent
Full-time

3 days ago

Job DescriptionThe OpportunityBased in Hyderabad, join a global healthcare biopharma company and be part of a 130-year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare.Be part of an organization driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products.Drive innovation and execution excellence. Be part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats.Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy.A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers.Role OverviewAs a member of Our company Public Key Infrastructure (PKI) team, the successful candidate will be responsible for management of digital certificate solutions across our global enterprise. This role requires a thorough technical understanding of PKI and its uses, with a focus on Microsoft Active Directory Certificate Services (AD CS). The incumbent should be prepared to provide consultation on complex projects to foster new uses for PKI in supporting business processes.What will you do in this role:

Understand divisional and site business system requirements for PKI
Design, deploy and maintain enterprise PKI solutions, on-premise and in the cloud, including Certificate Authorities (CAs), Hardware Security Modules (HSMs), Enterprise Key Management Service (KMS), Code Signing, Validation and Revocation Checking Services (OCSP, CRL)
Integrate PKI solutions with enterprise systems, applications, network, infrastructure and cloud platforms
Implement certificate automation solutions
Develop and maintain PKI-related documentation, policies and procedures
Act as technical escalation point for PKI Operations team and provide assistance for resolving PKI-related incidents, outages, and performance issues
Collaborate with security, infrastructure, DevOps, and application teams to provide PKI expertise
Demonstrate ability to stay current with all industry trends/best practices, as well as new product releases so that we can maintain a proactive 3-year systems management roadmap

What should you have:

5+ years of experience in designing and implementing global PKI solutions supporting Windows, Mac OS, Linux, iOS and Android devices
Experience with Microsoft AD CS and HSMs
Build, manage and troubleshoot Enterprise PKI solutions
Monitor and administer certificate usage, deployment, and lifecycle
Configure and deploy certificate templates
Work with different certificate enrollment protocols (e.g. NDES, ACME, EST)
Have a solid understanding of cryptographic algorithms and hashing functions
Understand encryption protocols and certificate-enabled applications, such as TLS, HTTPS, LDAPS
Have a solid understanding of Windows, Linux, and web-based systems
Have a solid understanding of certificate validation and revocation checking (OCSP, CRL)
Have ability to work under pressure in troubleshooting a production incident scenario and quickly identifying a resolution
Have exposure to PQC readiness efforts and shortened validity period transitions
Have a strong understanding of Zero Trust security principles and Identity & Access management (IAM)
Demonstrate ability to effectively convey technical details to non-IT / business colleagues
Ability to work efficiently in a matrixed environment with a global team comprised of company staff, contractors, and vendors
Strong analytical and problem-solving skills and demonstrable ability to work independently as well as in a team environment

Desired Skills & Experience

Experience with Microsoft AD CS
Experience with Venafi’s enterprise certificate management solution or equivalent
Experience with automated certificate provisioning
Experience with installation and configuration of Entrust HSMs
Experience with Enterprise Key Management Service
Familiarity with DevOps tools for PKI Integration (e.g. Jenkins, Ansible, GitHub)
Good working knowledge of ITIL framework and AGILE principles
Working knowledge and understanding of IT Service Management (Change, Incident, Knowledge and Problem Management) with tools such as ServiceNow
Willingness to challenge, ask questions, share ideas
Cyber Security certification (e.g. CompTIA Security+, ISC2 SSCP, ISC22 CISSP, Microsoft Security Certifications), Venafi certification (Venafi Security Administrator) is a plus

Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation.Who we are:We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world.What we look for:Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today.#HYDIT2025Current Employees applyCurrent Contingent Workers applySearch Firm Representatives Please Read Carefully
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.Employee Status: RegularRelocation:VISA Sponsorship:Travel Requirements:Flexible Work Arrangements: HybridShift:Valid Driving License:Hazardous Material(s):Required Skills: Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability ScanningPreferred Skills:Job Posting End Date: 09/30/2025*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.

MSD

Apply Now