Ajit D. — DevOps Manager

Professional Summary: Highly experienced Senior Security Analyst with a robust background in Public Key Infrastructure (PKI), hardware security modules (HSMs), cloud security, and vulnerability management. Demonstrated expertise in designing and implementing PKI architectures, managing certificate lifecycles, and ensuring compliance with industry standards and regulations. Proven leader in security initiatives, maintaining high availability environments. Skills: • Operating Systems: Windows Server (2000-2022), Linux (RHEL, CentOS, OEL 8) • Networking Tools: SNMP, Wireshark • Programming Languages: Java • Public Key Infrastructure (PKI): EJBCA, Microsoft PKI (ADCS). Digicert, PKCS#11, Cryptographic Standards (RSA, DES, AES, ECC, PQC), SYMANTEC VIP ,Certificate Lifecycle Management (CLM) . • Hardware Security Modules (HSMs): Luna SA, Protect Server, nCipher, YubiHSM, Cipher Trust , Manager, FIPS 140-2 , NIST Standards. • Cloud Platforms: AWS, Oracle Cloud, Oracle KMS, Azure Key Vault, Cloud HSM • Identity and Access Management (IAM): IDP/IAM • Hashicorp Vault • Audit and Compliance: FEDRAMP, SOC, PCI, SOC 2, regional data protection standards (Canada, US, EU) • Payment Technologies: EMV, 3DS, Payment Tokenization, PCI DSS • Background in operational environments, including incident response and change management. • Strong documentation skills for operational procedures. • Unix/Windows operating system knowledge. • Expertise in privacy, compliance, and data protection services.

Stackforce AI infers this person is a Cybersecurity expert specializing in PKI and HSM solutions.

Location: North Delhi, Delhi, India

Experience: 10 yrs 11 mos

Skills

Public Key Infrastructure (pki)
Vulnerability Management
Digital Certificate Management
Hsm Deployment
Compliance And Audit Leadership
Pki Architecture Design
Pki Infrastructure Optimization
Pki Troubleshooting
Technical Support

Career Highlights

Expert in Public Key Infrastructure (PKI) design and implementation.
Proven track record in vulnerability management and compliance.
Strong leadership in cross-functional security initiatives.

Work Experience

Qualys

Lead Security Analyst (1 yr 9 mos)

Senior Security Analyst (5 yrs 9 mos)

HCL Technologies

Professional Services Specialist (2 yrs 1 mo)

Freelance

PKI Consultant (4 mos)

GlobalSign

PKI Systems Engineer (9 mos)

Gemalto

Gemalto (2 yrs 3 mos)

Education

Post Graduate Diploma at CDAC Bangalore

Computer Science and Engineering at Amity University

Ajit D.

DevOps Manager

North Delhi, Delhi, India10 yrs 11 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Expert in Public Key Infrastructure (PKI) design and implementation.
Proven track record in vulnerability management and compliance.
Strong leadership in cross-functional security initiatives.

Stackforce AI infers this person is a Cybersecurity expert specializing in PKI and HSM solutions.

Contact

Skills

Core Skills

Public Key Infrastructure (pki)Vulnerability ManagementDigital Certificate ManagementHsm DeploymentCompliance And Audit LeadershipPki Architecture DesignPki Infrastructure OptimizationPki TroubleshootingTechnical Support

Other Skills

Audit and ComplianceCloud PlatformsCross-Functional CollaborationCustomer EducationCustomer EngagementCustomer SupportHSM Deployment and MaintenanceIT Security AssessmentsIdentity and Access Management (IAM)Networking ToolsPKI Environment SetupPayment TechnologiesProgramming LanguagesProject DeliveryProject Management

About

Experience

Qualys

2 roles

Lead Security Analyst

Jun 2024 – Present · 1 yr 9 mos

Senior Security Analyst

Jun 2020 – Present · 5 yrs 9 mos

PKI Infrastructure Design and Transition:
Spearheaded the design, development, and deployment of a new Public Key Infrastructure (PKI) to replace the legacy system. Collaborated with cross-functional teams to ensure minimal disruption during the transition, enhancing the security and scalability of cryptographic services.
Digital Certificate Management:
Directed the end-to-end lifecycle management of digital certificates, including the issuance, renewal, and revocation processes for both internal and public certificates. Established streamlined workflows to ensure efficient certificate handling, compliance with organizational standards, and uninterrupted operations.
HSM Deployment and Maintenance:
Led the deployment, configuration, and ongoing maintenance of Hardware Security Modules (HSMs) across the organization. Optimized HSM operations to deliver high availability, ensuring secure key management and encryption services critical to business operations.
Vulnerability Management and Threat Mitigation:
Utilized Qualys Guard to conduct comprehensive vulnerability assessments across enterprise systems. Identified, prioritized, and remediated vulnerabilities to mitigate potential security risks, improving the overall security posture.
Compliance and Audit Leadership:
Drove FEDRAMP and SOC 2 compliance initiatives, serving as the primary point of contact for audits. Implemented robust controls and documentation processes to meet regulatory standards, ensuring successful audit outcomes and sustained compliance.
Cross-Functional Collaboration:
Partnered with internal stakeholders, vendors, and external auditors to address security requirements and align PKI and HSM strategies with broader organizational goals. Delivered technical guidance and best practices to enhance system resilience and operational effectiveness.

Public Key Infrastructure (PKI)Digital Certificate ManagementHSM Deployment and MaintenanceVulnerability ManagementCompliance and Audit LeadershipCross-Functional Collaboration

Hcl technologies

Professional Services Specialist

May 2018 – Jun 2020 · 2 yrs 1 mo · Noida, Uttar Pradesh, India · On-site

Cutting-Edge Security Technologies:
Leveraged advanced security technologies to deliver tailored PKI solutions that meet diverse customer needs while aligning with the latest industry standards and best practices.
Customer Engagement and Needs Assessment:
Actively engaged with customers to analyze and understand their existing PKI infrastructure and future requirements. Conducted detailed consultations to identify gaps and design customized PKI architectures tailored to their organizational needs.
PKI Architecture Design and Implementation:
Designed robust PKI architectures to support secure digital operations. Managed the end-to-end implementation of new PKI infrastructures, ensuring optimal performance, scalability, and security.
PKI Migration and Integration:
Directed the seamless migration of legacy PKI infrastructures to modernized systems, ensuring minimal disruption to business processes. Oversaw the integration and migration of applications to align with new PKI environments, maintaining operational continuity and compliance.
Project Delivery:
Ensured timely delivery of PKI infrastructure projects by coordinating with stakeholders, managing resources, and adhering to agreed timelines. Delivered comprehensive documentation and training to enable smooth handover and ongoing management by the client.

PKI Architecture DesignCustomer EngagementProject Delivery

Freelance

PKI Consultant

Dec 2017 – Apr 2018 · 4 mos · India

PKI Infrastructure Optimization:
Provided expert consultation to customers to enhance and optimize their enterprise PKI infrastructures, ensuring improved performance, reliability, and scalability.
PKI Security Enhancement:
Assisted organizations in identifying vulnerabilities and implementing robust security measures to strengthen the integrity and security of their PKI environments.
Customer Education and Guidance:
Collaborated closely with clients to help them gain a deeper understanding of their enterprise PKI infrastructure, empowering them to make informed decisions regarding security improvements and system upgrades.
Customized Solutions:
Delivered tailored recommendations and strategies to address unique challenges within customer PKI environments, aligning solutions with organizational goals and compliance requirements.

PKI Infrastructure OptimizationCustomer Education

Globalsign

PKI Systems Engineer

Dec 2016 – Sep 2017 · 9 mos · Singapore

Customer and Partner Support:
Delivered after-sales technical assistance to customers and partners in the ASPAC/EMEA regions, focusing on Public Key Infrastructure (PKI) solutions (EJBCA) and Hardware Security Modules (HSMs) such as Luna Network HSM.
Issue Resolution and Reproduction:
Reproduced customer-reported issues in a dedicated lab environment to identify root causes and develop effective workarounds or hotfixes. Maintained a local lab in the Data Center for continuous testing and validation.
PKI Troubleshooting and Deployment:
Assisted customers in troubleshooting existing PKI environments and supported the setup of new PKI infrastructures, ensuring robust and scalable implementations.
HSM Backup and Recovery:
Supported customers with local and remote backup processes for HSM partitions, ensuring the security and availability of cryptographic keys.
Customer-Focused Solutions:
Tested, validated, and delivered workarounds and hotfixes, ensuring timely resolution of technical issues. Maintained consistent communication with customers throughout the resolution process to ensure high satisfaction levels.
Vendor Collaboration:
Coordinated with vendors, including PrimeKey, Singtel, Gemalto, and Thales, to address complex technical issues and streamline communication across presales, professional services, product management, and engineering teams.
Knowledge Sharing and Training:
Conducted on-demand training sessions for customers and partners, specializing in Luna Network HSMs and PKI technologies. Authored and updated knowledge base (KB) articles to document problem resolutions and streamline future troubleshooting.
Continuous Improvement:
Regularly updated the knowledge base with new information and insights from real-time issue resolutions, improving the efficiency of support processes and knowledge-sharing across teams.

Customer SupportPKI Troubleshooting

Gemalto

May 2014 – Aug 2016 · 2 yrs 3 mos · Greater Delhi Area

Provide post sales technical assistance to our customers and partners, with a focus on EMEA. Primary product focus will be SafeNet’s Hardware Security Modules (HSM-Luna SA and Protect Server)
Support is provided via email, Web, phone, in-house- and on-site visits)
Support our customers on SafeNet technical Level-2 and Level-3 product issues
Work as part of a global support team
Reproduce issue in local environment (lab) as required, maintain local lab
Escalate reproduced issue for workaround/hotfix
Help in troubleshooting existing PKI environments and also in setting up new PKI environments for customers.
Helping customers performing local and remote backup.
Test and provide workaround/hotfix to customer
Keep customer informed until resolution
Ensure overall customer satisfaction
Communicate efficiently to address customer’s issues with SafeNet internal departments (presales, professional services, sales, product management, manufacturing, and engineering
Acting as a Subject Matter Expert for various product/technology based components.
Providing on-demand training on multiple subjects.
Creation of KB articles detailing new problem resolution in real-time (i.e. immediately after product resolution) so that future incidents of the problem can be solved much more quickly.
Updating existing knowledge based on newly learned information (additional problem symptoms, newly discovered workarounds, etc.).
Acts as an Incident Manager for issues that require help from other groups such as R&D, Product Management, Order Fulfillment, Professional Services, and Presales etc. This includes communicating with the customer according to documented communication periodicity SLAs.