The Contraste Europe Group builds strong relations with its clients. It offers a range of IT services such as: Advisory, Solutions, Applications and Infrastructure. The Group’s sector focus is with finance, utilities, public institutions and non-commercial organisations. We are operating on three countries located in Belgium, Luxemburg and France. For one of our major clients in the financial sector, we are looking for a Security PKI Architect/Analyst.

Your role: 

The successful candidate will join the Application Security Team which is part of the Group Security and Business Resilience division. The main responsibility for the Group Security and Business Resilience (GSBR) division is to ensure that the technology infrastructure protects corporate assets from unauthorised access, modification, disclosure and destruction.

As part of the Application Security Team, the main responsibilities for the candidate are:

  • Defines, implement and ensures the proper functioning of security trust services within the PKI & Cryptographic security domain in line with security policies. Ensure the adequate and effective functioning of the company PKI and cryptographic security services.
  • As PKI policy officer, define, implement and maintain the PKI hierarchy and the certificate policies. Oversee and improve the current certificate lifecycle processes. Ensure adherence to the CA Certificate practice statement. Ensure PKI/CA best practices for special purpose Certificate authorities e.g. CA for Mobile device management, MS PKI CA for device client certificates, Cisco CA, …
  • As cryptographic subject matter expert, define and manage the key management lifecycle processes to ensure adequate cryptographic key protection and use. Use the Venafi product suite to facilitate and operate key management operations. Support the secure implementation of smartcard or HSM-based certificate authentication on technology and process point of view.
  • Define and maintain the cryptographic policies and standards, define the acceptable cryptographic standards, algorithms and key sizes, to adequately protect the firm’s information assets.
  • Perform risk assessments and define application and infrastructure-related security requirements for business and IT projects. Advises on high level security design of new applications and infrastructures to ensure secure operation within the environment.
  • Perform security validation to ensure effective implementation of security controls.
  • Act as security subject matter expert in the PKI and crypto domain and be the security point of contact for the business, administrator, technical and project teams.

Your profile: 

The successful candidate must:

  • Be a team player who communicates in an open, respectful and constructive way with her/his customers and peers, both verbally and in writing. The candidate will take ownership and ensure that organizational quality standards are met.
  • Be a very good communicator in English, both verbal and written, and able to discuss and defend the security interests with individuals and groups of senior business people as well as deep technical IT experts.
  • Have proven experience in security risk assessments, development of functional security requirements, process design and management reporting. Experience in security design, architecture and project management is a strong advantage.
  • Be service oriented, organized and independent security professional with at least 5 years solid experience in applied cryptography, PKI administration, managing digital certificates, verifying digital certificates and 3rd line support towards IT and business teams for certificate and key generation/operations/processes on target systems or business applications.
  • Take responsibility for the administration, operation, upgrade and support of the PKI servers, PKI operating systems, Certification Authorities (CA), Registration Authorities (RA), and Hardware Security Modules (HSM) for an enterprise wide Public Key Infrastructures (PKI) containing multiple CA’s with different trust levels. Able to implement, operate and maintain PKI operational services (CA, RA, CRL, HSM) both IT and business process oriented.
  • Ensure alignment with relevant PKI compliance and best practices. Write and maintain PKI policies (CP/CPS).
  • Have experience in working with X.509 PKI, smartcards, HSMs and common PKI–-based protocols, including SSL and TLS. Knowledge of PKI and cryptographic standards eg. NIST, FIPS, DoD…

We offer: 

  • A challenging position in a fast growing company with an international presence.
  • A stimulating working environment with a really good team spirit maintained by lots of internal events (teambuilding, ...).
  • A dynamic culture focused on personal development.
  • A wide range of training and career development opportunities.

Interested ?

Please apply now !

Apply online

Files must be less than 2 MB.
Allowed file types: txt rtf pdf doc docx.
Files must be less than 2 MB.
Allowed file types: txt rtf pdf doc docx.
This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.