Senior Infrastructure Operations Analyst (Identity & Certificate Management)

We are seeking a Senior Infrastructure Operations Analyst with deep expertise in Identity and Access Management (IAM) and Certificate Lifecycle Management (CLM). This is a senior-level individual contributor role responsible for securing digital identities, managing certificate-based authentication systems, and supporting enterprise identity infrastructure across both on-premises and cloud environments.

The ideal candidate will serve as a subject matter expert in certificate management, helping drive certificate lifecycle initiatives, infrastructure modernization efforts, cloud migrations, and security improvements. This role requires strong technical depth, the ability to work independently, and experience supporting complex enterprise environments., * Lead and execute Certificate Lifecycle Management (CLM) initiatives across the enterprise.

• Manage and support Public Key Infrastructure (PKI), certificate issuance, renewal, revocation, and migration activities.
• Administer and support identity management technologies across human, machine, and application identities.
• Implement and support certificate-based authentication solutions, including SCEP, SSO, MFA, SAML, and OAuth.
• Fulfill operational requests and support activities related to identity and certificate technologies.
• Monitor system health, improve observability, and proactively address operational issues.
• Participate in incident, problem, and change management activities.
• Develop automation solutions using scripting and tooling to improve operational efficiency.
• Support vulnerability remediation efforts and collaborate with security teams on audit findings, penetration test results, and compliance initiatives.
• Assist with infrastructure modernization projects, including migration of on-premises workloads to cloud-based solutions.
• Participate in an on-call rotation and support scheduled after-hours maintenance activities.

• Bachelor''s degree or equivalent combination of education and experience.
• 5+ years of experience supporting Identity and Access Management (IAM) technologies.
• 5+ years of hands-on experience with Certificate Lifecycle Management (CLM) and Public Key Infrastructure (PKI).
• Extensive knowledge of X.509 certificates, certificate enrollment processes, and automated certificate management protocols such as SCEP.
• Strong experience with Microsoft Active Directory Certificate Services (ADCS).
• Experience with certificate management platforms such as Venafi.
• Knowledge of external certificate authorities and certificate administration processes.
• Strong understanding of identity infrastructure technologies, including:

• Active Directory
• Entra ID (Azure AD)
• DNS
• DHCP

• Experience supporting both Windows and Linux environments.
• Experience implementing and supporting:

• Certificate-Based Authentication
• Single Sign-On (SSO)
• Multi-Factor Authentication (MFA)
• Federation Services (SAML/OAuth)

• Experience with Microsoft Defender and security-focused infrastructure operations.
• Scripting experience using PowerShell and/or Python.
• Strong verbal and written communication skills.
• Ability to work independently while collaborating effectively across technical teams.
• Strong troubleshooting, analytical, and problem-solving skills.

Preferred Qualifications

• Experience supporting AWS cloud environments and cloud identity integrations.
• Experience migrating identity-related services from on-premises environments to cloud platforms.
• Hands-on experience configuring and supporting enterprise SSO solutions.
• Experience with:

• Centrify
• CyberArk
• Quest Active Roles
• NetBackup
• Microsoft Intune
• JAMF

• Experience automating infrastructure and identity management processes., This role is ideal for a senior-level IAM professional who specializes in certificate management and can serve as the technical lead for certificate lifecycle operations. The successful candidate will be comfortable working in complex enterprise environments, driving modernization initiatives, supporting cloud transformation efforts, and influencing technical direction across identity management disciplines.