Certificate Management (PKI) Engineer
Publication date:
20 November 2024Workload:
100%Contract type:
Permanent position- Place of work:Deerfield
Vantive: A New Company Built on Our Legacy
Since last year, Baxter has been on a journey to separate our Kidney Care segment into a standalone company. Vantive* will build on our nearly 70-year legacy in acute therapies and home and in-center dialysis to provide best-in-class care to the people we serve. We believe Vantive will not only build our leadership in the kidney care space, it will also offer meaningful work to those who join us.
At Vantive, you will become part of a community of people who are focused, courageous and don’t settle for the mediocre. Each of us are driven to help improve patients’ lives worldwide. Join us as we revolutionize kidney care and other vital organ support.
*Completion of the proposed sale of Vantive to funds managed by the Carlyle Group is subject to receipt of customary regulatory approvals and satisfaction of other closing conditions.
Your role at Baxter
As a Certificate Management (PKI) Engineer, you will play a critical role in ensuring the security and integrity of digital communications within an organization. You will be responsible for managing the lifecycle of digital certificates, including issuance, renewal, revocation, and auditing. Your expertise will be crucial in maintaining compliance with industry standards and best practices related to cryptographic protocols and certificate management.
What you'll be doing
Certificate Lifecycle Management:
- Oversee the issuance, renewal, and revocation of digital certificates.
- Implement and maintain processes for managing certificate requests, approvals, and deployments.
- Monitor certificate expiration dates and ensure timely renewal to prevent service disruptions.
- Maintain an accurate inventory of all certificates deployed across systems and applications.
Security Compliance:
- Stay updated on industry standards, regulations, and best practices related to cryptographic protocols and certificate management.
- Ensure compliance with regulatory requirements such as PCI DSS, HIPAA, GDPR, and others relevant to certificate management.
- Collaborate with compliance and audit teams to facilitate certificate-related audits and assessments.
Certificate Infrastructure Management:
- Configure and maintain certificate authorities (CAs) and registration authorities (RAs) to support secure certificate issuance and management.
- Monitor the health and performance of certificate infrastructure components.
- Troubleshoot issues related to certificate provisioning, validation, and revocation.
Cryptographic Security:
- Implement strong cryptographic algorithms and key management practices to safeguard digital certificates.
- Evaluate cryptographic vulnerabilities and recommend mitigation strategies.
- Collaborate with security teams to integrate certificate management with broader security initiatives.
Documentation and Reporting:
- Maintain comprehensive documentation of certificate management processes, procedures, and configurations.
- Generate regular reports on certificate usage, expiration status, and compliance metrics for stakeholders.
Collaboration and Communication:
- Collaborate with system administrators, network engineers, developers, and other stakeholders to integrate certificate management into various systems and applications.
- Communicate effectively with internal teams and external vendors to resolve certificate-related issues and implement enhancements.
What you'll bring
- Bachelor's degree in Computer Science, Information Technology, or related field.
- Proven experience in managing digital certificates in enterprise environments.
- 2+ years of experience with certificate management tools and platforms (e.g., OpenSSL, Microsoft Certificate Services, Hashicorp Vault).
- Strong understanding of cryptographic concepts, PKI (Public Key Infrastructure), and certificate management protocols (e.g., X.509, SSL/TLS).
- Knowledge of security standards and compliance frameworks (e.g., NIST, ISO 27001, SOC 2).
- Excellent problem-solving skills and attention to detail.
- Effective communication and collaboration abilities.
- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Security Manager (CISA) are a plus.
Baxter is committed to supporting the needs for flexibility in the workplace. We do so through our flexible workplace policy which includes a minimum of 3 days a week onsite. This policy provides the benefits of connecting and collaborating in-person in support of our Mission.
We understand compensation is an important factor as you consider the next step in your career. At Baxter, we are committed to equitable pay for all employees, and we strive to be more transparent with our pay practices. The estimated base salary for this position is $120,000 to $160,000 annually. The estimated range is meant to reflect an anticipated salary range for the position. We may pay more or less than of the anticipated range based upon market data and other factors, all of which are subject to change. Individual pay is based on upon location, skills and expertise, experience, and other relevant factors. This position is also eligible for discretionary bonus. For questions about this, our pay philosophy, and available benefits, please speak to the recruiter if you decide to apply and are selected for an interview
Equal Employment Opportunity
Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.
EEO is the Law
EEO is the law - Poster Supplement
Pay Transparency Policy
Reasonable Accommodations
Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the link here and let us know the nature of your request along with your contact information.
Recruitment Fraud Notice
Baxter has discovered incidents of employment scams, where fraudulent parties pose as Baxter employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information. To learn how you can protect yourself, review our Recruitment Fraud Notice .