Venafi Subject Matter Expert
Bangalore, IN
About Atos Group
Atos Group is a global leader in digital transformation with c. 67,000 employees and annual revenue of c. €10 billion, operating in 61 countries under two brands — Atos for services and Eviden for products. European number one in cybersecurity, cloud and high performance computing, Atos Group is committed to a secure and decarbonized future and provides tailored AI-powered, end-to-end solutions for all industries. Atos Group is the brand under which Atos SE (Societas Europaea) operates. Atos SE is listed on Euronext Paris.
The purpose of Atos Group is to help design the future of the information space. Its expertise and services support the development of knowledge, education and research in a multicultural approach and contribute to the development of scientific and technological excellence. Across the world, the Group enables its customers and employees, and members of societies at large to live, work and develop sustainably, in a safe and secure information space.
Role Overview We are seeking a seasoned Venafi Subject Matter Expert (SME) to lead the strategy, architecture, and operational excellence of our Machine Identity Management program. As a Senior SME, you will be the primary authority on the Venafi Trust Protection Platform (TPP), driving the automation of certificate lifecycles across a complex, multi-cloud enterprise environment. You will bridge the gap between security policy and technical execution, ensuring that every machine identity—from web servers to Kubernetes clusters—is secure, visible, and automated. ________________________________________ Key Responsibilities • Architectural Leadership: Design and scale the Venafi Trust Protection Platform (TPP) and TLS Protect Cloud architecture to support global enterprise requirements. • Automation & Integration: Develop and maintain automated workflows for certificate issuance, renewal, and installation using Venafi drivers, APIs (REST/SOAP), and orchestration tools (Ansible, Terraform, Jenkins). • Policy & Governance: Define and implement placement rules, folder structures, and policy trees within Venafi to ensure compliance with corporate security standards. • SME Advisory: Act as the highest escalation point for complex technical issues involving PKI, SSL/TLS, and Machine Identity. Provide mentorship to junior security engineers. • Cross-Functional Collaboration: Partner with DevOps and Cloud teams to integrate Venafi into CI/CD pipelines and containerized environments (Kubernetes/OpenShift) using Venafi Service Mesh or Cert-Manager. • Vendor & CA Management: Manage integrations with internal and external Certificate Authorities (CAs) such as DigiCert, Sectigo, Microsoft ADCS, and AWS Private CA. • Strategic Roadmapping: Stay ahead of industry trends (e.g., Post-Quantum Cryptography, shorter TLS lifespans) and evolve the Venafi environment to meet future security challenges. ________________________________________ Required Qualifications • Experience: Minimum of 5+ years of hands-on experience specifically managing and architecting Venafi Trust Protection Platform (TPP) in a large-scale enterprise. • Core Technical Skills: o Expert-level knowledge of PKI (Public Key Infrastructure), including root/intermediate CAs and certificate revocation (CRL/OCSP). o Deep understanding of SSL/TLS protocols, SSH key management, and code signing. o Proficiency in Linux/Unix and Windows administration. • Automation: Strong scripting skills (Python, PowerShell, or Bash) and experience with Venafi WebSDK/API for custom integrations. • Cloud/DevOps: Experience securing machine identities in AWS, Azure, or GCP and integrating with HashiCorp Vault or Kubernetes. • Education: Bachelor’s degree in Computer Science, Cybersecurity, or a related technical field. ________________________________________ Preferred Certifications & Skills • Venafi Specific: Venafi Security Administrator (VSA) or Venafi Trusted Implementation Specialist (VTIS). • General Security: CISSP, CISM, or CompTIA Security+. • Hardware: Experience with Hardware Security Modules (HSMs) like Thales or Entrust for key protection.
Here at Atos, diversity and inclusion are embedded in our DNA. Read more about our commitment to a fair work environment for all.
Atos is a recognized leader in its industry across Environment, Social and Governance (ESG) criteria. Find out more on our CSR commitment.
Choose your future. Choose Atos.