1.844.822.0541

info@nexusgroup.ca

Nexus Systems Group

by

Contract Duration: ASAP – 10/31/2025
Extension will come
Number of Positions: 1
Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week (Possible OT)
Reason: Additional Workload

Story Behind the Need
Business group: Active Directory Engineering

Project: B9DD Software Currency Upgrade Windows 2022

The Technical Analyst/PKI Specialist play a critical role in managing and enhancing our Microsoft Public Key Infrastructure (MSPKI). Their expertise ensures the secure issuance, management, and revocation of digital certificates across multiple countries. They will collaborate with cross-functional teams, design robust PKI solutions, and contribute to disaster recovery efforts. They integrate PKI services with Microsoft (Active Directory, Intune, Entra) and third-party technologies such as VMWare, Workspace ONE, Google, among others.
Automatic certificate renewal through Group Policy will be a key aspect of their responsibilities.
They will contribute to the successful deployment and management of Microsoft PKI & AD systems and support critical projects on a contract basis.

Candidate Value Proposition:
This role offers a unique opportunity to lead the design and management of enterprise-level Microsoft PKI infrastructure within a global financial environment. The candidate will work on critical security systems, automate certificate processes, and integrate with modern cloud and on-prem technologies. With a strong focus on innovation, compliance, and collaboration, this position is ideal for a technical expert ready to make a meaningful impact on secure identity and access management at scale.

Typical Day in Role:
• Design, build, and maintain our Microsoft PKI infrastructure for authentication, digital signatures, and encryption.
• Handle certificate lifecycle (issuance, renewal, revocation) for user and system-based levels.
• Respond promptly to complex technical incidents & troubleshooting related to PKI infrastructure.
• Implement automation and scripting in PowerShell.
• Deploy OCSP, PKCS, SCEP, CRL and other PKI technologies.
• Ensure compliance with Microsoft best practices and industry standards (e.g., NIST).
• Provide and update documentation on operational procedures and methodologies.
• Actively participate in PKI-related disaster recovery tests.
• Stay informed about emerging security protocols relevant to Microsoft environments.
• Participate in compliance audits specific to Microsoft PKI technologies

Candidate Requirements/Must Have Skills:
1) 5+ years of experience as a Technical Analyst
2) Fluent in English
3) Active Directory Certificate Services and 3+ years of experience with Active Directory
4) 3+ years of experience with Group Policy Objects
5) 5+ years of experience with Microsoft PKI operations and technologies

Nice-To-Have Skills:
1) Technical Analyst experience in FI
2) Knowledge of X.509 digital certificates, revocation checking technologies (CRL) and Transport Layer Security (TLS)
3) Scripting/programming language skills (PowerShell)
4) Microsoft Certification
5) cloud skills (Intune, Entra ID)

Soft Skills Required:
• Strong communication skills (written and verbal)
• Strong problem solving skills
• Ability to multitask

Education: Bachelor’s or Master’s Degree in Computer Science, Technical, Engineering, Information Systems, or related field.

Best VS. Average Candidate: The ideal candidate would have strong experience as a Technical Analyst within FI and excellent cloud skills.

Candidate Review & Selection
2 rounds
1st round – panel (Infrastructure Project leaders) – 30 mins – MS Teams Video (technical interview)
2nd round – Director + Hiring Manager – 1 hr – MS Teams Video (technical interview)

Hiring Manager’s availability to interview: ASAP