Your Career

Palo Alto Networks is looking for a talented senior Principal Engineer with a mix of PKI and infrastructure knowledge who will be responsible for our PKI and certificate management services. As a member of a senior technical staff consisting of authorities in many adjacent areas (Identity services, Cloud Infrastructure, Linux, SQL), you will be part of our next generation IT infrastructure platform team. You are passionate about a technical leadership role that involves deep knowledge of both the application and the product and also believe that automation is a key component to operating large-scale systems.

Fast-paced, fast-changing and unpredictable defines our information technology team. We are looking for analytical, agile, and influential individuals who can quickly deliver meaningful results and solutions with the flexibility to accommodate evolving business needs and shifting priorities.

Your Impact

• Ownership of Palo Alto Networks globally distributed customer-facing PKI infrastructure and certificate management services
• Maintain scalability, capacity, redundancy, and resiliency planning for global PKI solution
• Provision, configure & support resilient hybrid cloud deployment architecture, while maintaining availability and performance SLAs based on business and product requirements
• Maintain all documentation related to Certificate Practice Statement (CPS), including areas of design, deployment, validation, operational and DR/BCP
• Design proactive monitoring, alerting, trend analysis for PKI and underlying infrastructure, and support the operations team in implementation
• Collaborate and partner with other development teams to define technical requirements for implementation and adoption of certificates usage in Palo Alto Networks products and cloud services and develop automation and integration methods with PKI solution
• Create a certificate lifecycle management process and work with the operations team on implementation
• Subject Matter Expert for all areas of certificates, implementation & operation of PKI solution
• Create presentation layers for Technical, Business and Executive Management showing environment operational health based on Key Performance Indicators

Your Experience

• 12+ years of experience managing a large IT infrastructure platform architecture and deployment
• 5+ years PKI infrastructure experience with a strong understanding of PKI
• Minimum 5 years of Linux hands-on experience in managing and supporting Linux server infrastructure in Ubuntu/CentOS/RHEL
• Experience and understanding of installation and management of OCSP and HSM solutions
• Design and performance optimization for infrastructure and API in-depth knowledge of PKI elements
• In-depth knowledge of Certificate Lifecycle Management
• Must be able to collaborate between product management, engineering and IT teams on PKI roadmap
• Experience in building Certificate Policy (CP) and Certificate Practice Statement (CPS)
• Strong technical writing skills to support required documentation
• Experience managing Infrastructure as Code using Ansible, Chef or similar configuration management tool and source code control systems such a GIT, SVN etc.
• Experience with Thales HSM is preferred
• Fluent in security & encryption terminology
• Problem solving and troubleshooting of complex issues
• Passion, drive, energy, a sense of humor and a great attitude