Sr System Specialist-Public Key Infrastructure

Novo Nordisk Global Business Services (GBS), IndiaDepartment – Enterprise IT – Infrastructure and Information Security (I&IS) Identity Access ManagementJob Location – Bangalore Are you passionate about Public Key Infrastructure (PKI)? Do you have deep expertise in in managing the lifecycle of digital identities and the cryptographic systems that secure them. This position requires technical expertise and understanding of Public Key Infrastructure (PKI) and business analysis skills. Together with our PKI team you will be a key part of the operational team managing PKI in a hybrid model, with both cloud and on-prem solution.Read on and apply today! About the departmentThe Identity Access Management (IAM) department is part of Infrastructure and Information Security (I&IS) within Enterprise IT (EIT). Our team is located primarily in India and Denmark and consists of leading experts in IAM tools, technologies, processes, and governance. We are on a mission to maintain and improve the current IAM model at Novo Nordisk while transforming it into a modernized framework that adapts seamlessly to our organization’s evolving needs. By prioritizing speed, security, and scalability, we aim to empower both internal and external users with effortless access to resources while ensuring robust data protection. The PositionAs a Senior System Specialist, you will:Daily operating our current and future PKI environment and Certificate Lifecycle Management (CLM) serviceConfigure and maintain Entra ID environments, including user/group management, Conditional Access Policies, and Privileged Identity Management (PIM).Design and support services that integrate on-premises Active Directory (AD) with Entra ID, often using certificate-based authentication (CBA) to replace legacy protocols.Manage intermediate Certificate Authorities (CAs), and cloud-based PKI services.Experience with scripting in PowerShell, Python, or Microsoft Graph API scripts able to automate certificate deployments and identity governance workflows.Provide L2/L3 troubleshooting for authentication failures, expired certificates, and access issues QualificationsWe are looking for a candidate with:Over 6 years of IT related experience in IAM, including hands-on work on MS ADCS and within Microsoft Entra ID (formerly Azure AD) and on-premises Active Directory.Certification as Venafi Security Administrator (VSA), Venafi Trusted Implementation Specialist (VTIS) or similar is preferred.Proficiency in SCEP, EST, OCSP, and LDAP for certificate enrolment and verification.Proficiency in Identity and Access Management (IAM) principles and technologies.Knowledge of NIST and ability to work with FIPS complianceAbility to work under restriction of GxP proceduresEffective communication, presentation, and interpersonal skills for managing both internal stakeholders and external suppliers.Strong documentation and process mapping skills.Familiarity with security protocols and technologies, including SSH, SAML, OAuth, OpenID Connect, and LDAP.Strong analytical and problem-solving skills, with the capability to troubleshoot and resolve complex issues. Working at Novo NordiskEvery day we seek the solutions that defeat serious chronic diseases. To do this, we approach our work with an unconventional spirit, a rare determination, and a constant curiosity. For over years, this unordinary mindset has seen us build a company unlike any other. One where a collective passion for our purpose, mutual respect, and a willingness to go beyond what we know delivers extraordinary results.