SSH Engineer

SSH Engineer We are seeking an SSH Engineer to support our Public Key Infrastructure (PKI) and IT teams. This role focuses on the management of the entire SSH key lifecycle, from discovery and inventory to automation and risk assessment. The ideal candidate will have a strong understanding of Venafi, cryptography, automation, and security integration to maintain a secure and compliant environment.Key ResponsibilitiesUtilize agent-based and agentless scanning tools to identify SSH keys across the infrastructure, including Windows and Unix/Linux operating systems.Develop and customize PowerShell scripts for adaptable SSH key discovery.Automate SSH key lifecycle processes, including provisioning, rotation, remediation, and revocation.Integrate Venafi with security tools such as Active Directory, CyberArk, and systems like ServiceNow.Maintain an accurate, up-to-date inventory of all SSH keys, detailing their type, location, algorithm, and key sizes.Manage SSH certificates, understanding their benefits like expiration dates and metadata.Identify and prioritize vulnerabilities such as weak, old, or orphan keys and root access for remediation.Implement role-based access control to manage permissions for SSH key usage and issuance.Generate reports on SSH key inventory, policy violations, and compliance status to support audits.Troubleshoot issues related to SSH key discovery, deployment, and usage.Required QualificationsTechnical SkillsUnderstanding of agent-based and agentless scanning tools for SSH key identification.Ability to work with and customize PowerShell scripts for SSH key discovery.Basic understanding of public-key cryptography and the function of SSH keys and certificates.Proficiency in automating SSH key lifecycle processes.Familiarity with integrating Venafi with tools like Active Directory, CyberArk, and ServiceNow.Knowledge of network protocols and device configurations for effective scanning.Skills in creating and maintaining an inventory of all SSH keys.Understanding of role-based access control for managing permissions.Capability to generate reports on SSH key inventory, policy violations, and compliance.Location: San Antonio, Texas (Remote)