PKI and Key Management Security Engineer (m/f/d)

Vollzeit  •  IT & Software  •  Düsseldorf, Germany

<div class="show-more-less-html__markup show-more-less-html__markup--clamp-after-5 relative overflow-hidden"> <p><strong>About the company -</strong></p><p><br/></p><p>Rakuten empowers through technology.</p><p><br/></p><p>Rakuten Symphony Germany is building a nationwide mobile network based on the industry-leading Symphony platform developed from Singapore and successfully deployed in Japan. Symphony is a fully virtualized, cloud-native telco platform at the cutting edge of technology: Rakuten partners with research organizations, start-ups, and SMEs through its Network Innovation Lab on the future of OpenRAN and autonomous networks of the future. We are in the process of deploying a nation-wide mobile network in Germany.</p><p><br/></p><p><strong>Your Role:</strong></p><p><br/></p><p>As a PKI Engineer, you will be responsible for the design, implementation, operation, and continuous improvement of our Public Key Infrastructure services within a modern, containerized environment. You will ensure the secure and reliable management of digital certificates, keys, and cryptographic services as HSMs across Linux-based systems and Kubernetes platforms. Working closely with security, infrastructure, and NOC teams, you will contribute to strengthening our overall security posture while supporting business-critical services. In addition, you will design and operate enterprise secrets management and key management solutions to protect sensitive data, secrets, certificates and cryptographic material.</p><p><br/></p><p><strong>Your Responsibilities:</strong></p><ul><li>Design, implement, and operate enterprise-grade PKI solutions, including certificate lifecycle management.</li><li>Manage and maintain Certificate Authorities (CAs), Registration Authorities (RAs), and related components.</li><li>Automate certificate provisioning, renewal, and revocation processes.</li><li>Integrate PKI services into Linux-based systems and containerized workloads.</li><li>Deploy and operate PKI components within Kubernetes environments.</li><li>Ensure high availability, scalability, and security of PKI platforms.</li><li>Implement and maintain cryptographic standards, policies, and procedures.</li><li>Monitor, troubleshoot, and resolve PKI-related incidents and performance issues.</li><li>Collaborate with NOC and security teams to integrate PKI with other systems.</li><li>Maintain technical documentation and support audits and compliance activities.</li><li>Supporting other domains in operating the PKI solution.</li><li>Design, implement, and operate centralized secrets management platform.</li><li>Manage dynamic secrets, encryption keys, and secure service-to-service authentication mechanisms.</li><li>Implement access control policies for secrets.</li><li>Integrate secrets management solutions into Kubernetes.</li><li>Support secure onboarding of applications to centralized authentication and authorization systems.</li></ul><p><br/></p><p><strong>Requirements:</strong></p><ul><li>5+ years of experience in the field of public key infrastructures, cryptographic methods and electronic certificates.</li><li>Strong hands-on experience with Public Key Infrastructure (PKI) and certificate management.</li><li>Strong hands-on experience with Hardware-Security-Modules (HSM).</li><li>Solid expertise in Linux system administration.</li><li>Practical experience with containers and Kubernetes.</li><li>Good understanding of cryptographic concepts, standards, and best practices.</li><li>Experience with automation and scripting (e.g., Bash, Python, or similar).</li><li>Familiarity with high-availability architectures and secure system design.</li><li>Experience integrating security services into cloud-native or microservices environments.</li><li>Strong analytical and troubleshooting skills.</li><li>Structured and security-focused working style.</li><li>Experience integrating secrets management with container orchestration platforms.</li><li>Experience implementing authentication methods such as certificate-based and token-based.</li></ul> </div>

Job Overview
  • Datum der Veröffentlichung

    Mai 15, 2026

  • Kategorie

    IT & Software

  • Job Type

    Vollzeit

  • Standort

    Düsseldorf, Germany

  • Arbeitgeber

    Rakuten Symphony

  • Source

    LinkedIn