Back to jobs
Position Title: PKI Analyst
Location: Taguig City, Metro Manila – 2 days per week onsite
Role Purpose
Summary
• Provide operational support for managed PKI services.
• Maintain an accurate and up to date inventory of public and private certificates, including ownership, purpose, issuing authority, and lifecycle state.
• Manage certificate issuance, renewal, revocation, and re keying activities in line with agreed PKI processes and security standards.
• Support the migration and re issuance of existing certificates into the client’s defined PKI structure.
• Monitor certificate expiry and service availability to proactively prevent certificate related outages.
• Maintain and review user access to cryptographic key management systems, ensuring privileged access is restricted, reviewed, and removed appropriately.
• Support joiner, mover, and leaver access management processes for PKI platforms.
• Act as an operational point of contact for PKI related incidents, service requests, and escalations.
• Support planned maintenance activities through change coordination and stakeholder communication.
• Support unplanned maintenance and incident response activities, providing timely and accurate updates to internal teams and client stakeholders.
• Work with internal teams and third party suppliers to ensure PKI platform availability meets agreed service levels.
• Identify and escalate weaknesses or risks within cryptographic services in line with managed services governance and escalation procedures.
• Contribute to the continuous improvement of PKI processes, documentation, and operational runbooks.
• Deliver a professional, customer focused service aligned to managed services delivery standards.
What we are looking for in you:
Minimum Requirements
• Experience working in a managed service, security operations, IAM, or security platform operations role.
• Practical understanding of PKI concepts, including certificates, certificate authorities, trust chains, expiry, and revocation.
• Experience supporting certificate lifecycle management within an enterprise or managed service environment.
• Experience working with systems requiring privileged access and strong access governance.
• Strong process discipline and experience working to defined procedures and SLAs.
• Experience working in a client facing or service delivery role.
Desirable Requirements
• Experience with enterprise PKI platforms such as Sectigo, DigiCert, Microsoft AD CS, Venafi, or similar.
• Experience supporting regulated or financial services clients.
• Familiarity with cryptographic key management systems or HSM concepts.
• ITIL or service management experience.
• Security related certifications such as Security+, GIAC, CISSP, or equivalent.
• Degree in a relevant technical or security related discipline.
Functional Overview:
The Managed PKI Services function is responsible for the operational delivery, maintenance, and governance of Public Key Infrastructure services for NCC Group clients.
The function provides day to day management of enterprise PKI platforms, supporting certificate lifecycle management, cryptographic key governance, and service reliability within regulated and security sensitive environments. This includes maintaining accurate certificate inventories, managing issuance, renewal, revocation, and access controls, and ensuring PKI services operate in line with agreed service levels.
The function acts as an operational interface between clients, internal service delivery teams, and third party vendors, handling PKI related incidents, service requests, and maintenance activities. Clear communication, risk awareness, and process discipline are central to the function’s delivery.
Managed PKI Services operates within defined governance, change, and escalation frameworks, identifying operational risks and service issues and escalating appropriately to senior leadership. The function contributes to continuous service improvement by refining processes, documentation, and controls to improve resilience, reduce service disruption, and strengthen cryptographic security posture.
Ways of working
· Focusing on Clients and Customers.
· Working as One NCC.
· Always Learning.
· Being Inclusive and Respectful.
· Delivering Brilliantly.
Come join us?
What do we offer in return?
We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits:
· Transportation and rice allowances
· Night differential, overtime pay and holiday pay
· 13th‑month pay and performance‑based bonus plan
· Day‑1 HMO healthcare coverage for you and dependents
· Outpatient medicine reimbursement
· Group life insurance, accidental death & disability cover
· Employee Assistance Program (EAP) with 24/7 confidential counselling
· Generous vacation and sick leave, available from Day 1
· Special Time Off: Take time off for those big moments in life, like getting married/civil ceremony, becoming a grandparent, and welcoming home a new pet.
· Company share plan & Sharesave scheme allowing discounted share purchase through monthly savings
So, what’s next?
If this sounds like the right opportunity for you, then we would love to hear from you! Click on apply to this job to send us your CV and cover letter and the relevant member of our global talent team will be in touch with you. Alternatively send your details to [email protected] .
PKI Analyst
Taguig City, Metro Manila – 2 days per week onsitePosted 5 days ago
Full-timeonsite
Job Description
PKI Analyst
Department: Cyber Services and Capabilities
Employment Type: Full Time
Location: PHL Manila
Reporting To: Hollie Mowatt
Description
Position Title: PKI Analyst
Location: Taguig City, Metro Manila – 2 days per week onsite
Role Purpose
This role is an operational position within NCC Group’s Managed Services organisation, responsible for the day to day operation and support of a managed Public Key Infrastructure (PKI) service for a regulated financial services client.
The role focuses on the effective running, maintenance, and governance of PKI services delivered using the Sectigo platform. This includes managing certificate lifecycles at scale, maintaining accurate PKI inventories, supporting access governance for cryptographic key management systems, and responding to PKI related incidents and service requests.
The role operates within defined managed service processes and escalation paths and works closely with service delivery teams, suppliers, and client stakeholders. The emphasis is on service reliability, risk awareness, and clear communication rather than PKI architecture or engineering design.
The role requires strong operational discipline, an understanding of cryptographic risk, and the ability to support both planned and unplanned maintenance activities while ensuring service levels and client expectations are met.
The role requires strong operational discipline, an understanding of cryptographic risk, and the ability to support both planned and unplanned maintenance activities while ensuring service levels and client expectations are met.
Key Responsibilities
Summary
• Provide operational support for managed PKI services.
• Maintain an accurate and up to date inventory of public and private certificates, including ownership, purpose, issuing authority, and lifecycle state.
• Manage certificate issuance, renewal, revocation, and re keying activities in line with agreed PKI processes and security standards.
• Support the migration and re issuance of existing certificates into the client’s defined PKI structure.
• Monitor certificate expiry and service availability to proactively prevent certificate related outages.
• Maintain and review user access to cryptographic key management systems, ensuring privileged access is restricted, reviewed, and removed appropriately.
• Support joiner, mover, and leaver access management processes for PKI platforms.
• Act as an operational point of contact for PKI related incidents, service requests, and escalations.
• Support planned maintenance activities through change coordination and stakeholder communication.
• Support unplanned maintenance and incident response activities, providing timely and accurate updates to internal teams and client stakeholders.
• Work with internal teams and third party suppliers to ensure PKI platform availability meets agreed service levels.
• Identify and escalate weaknesses or risks within cryptographic services in line with managed services governance and escalation procedures.
• Contribute to the continuous improvement of PKI processes, documentation, and operational runbooks.
• Deliver a professional, customer focused service aligned to managed services delivery standards.
Skills, Knowledge & Expertise
What we are looking for in you:
Minimum Requirements
• Experience working in a managed service, security operations, IAM, or security platform operations role.
• Practical understanding of PKI concepts, including certificates, certificate authorities, trust chains, expiry, and revocation.
• Experience supporting certificate lifecycle management within an enterprise or managed service environment.
• Experience working with systems requiring privileged access and strong access governance.
• Strong process discipline and experience working to defined procedures and SLAs.
• Experience working in a client facing or service delivery role.
Desirable Requirements
• Experience with enterprise PKI platforms such as Sectigo, DigiCert, Microsoft AD CS, Venafi, or similar.
• Experience supporting regulated or financial services clients.
• Familiarity with cryptographic key management systems or HSM concepts.
• ITIL or service management experience.
• Security related certifications such as Security+, GIAC, CISSP, or equivalent.
• Degree in a relevant technical or security related discipline.
Functional Overview:
The Managed PKI Services function is responsible for the operational delivery, maintenance, and governance of Public Key Infrastructure services for NCC Group clients.
The function provides day to day management of enterprise PKI platforms, supporting certificate lifecycle management, cryptographic key governance, and service reliability within regulated and security sensitive environments. This includes maintaining accurate certificate inventories, managing issuance, renewal, revocation, and access controls, and ensuring PKI services operate in line with agreed service levels.
The function acts as an operational interface between clients, internal service delivery teams, and third party vendors, handling PKI related incidents, service requests, and maintenance activities. Clear communication, risk awareness, and process discipline are central to the function’s delivery.
Managed PKI Services operates within defined governance, change, and escalation frameworks, identifying operational risks and service issues and escalating appropriately to senior leadership. The function contributes to continuous service improvement by refining processes, documentation, and controls to improve resilience, reduce service disruption, and strengthen cryptographic security posture.
Ways of working
· Focusing on Clients and Customers.
· Working as One NCC.
· Always Learning.
· Being Inclusive and Respectful.
· Delivering Brilliantly.
Our company
At NCC Group, our mission is to create a more secure digital future. That mission underpins everything we do, from our work with our incredible clients to groundbreaking research shaping our industry. Our teams' partner with clients across a multitude of industries, delving into, securing new products, and emerging technologies, as well as solving complex security problems. As global leaders in cyber and escrow, NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks.
Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support.
Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support.
Come join us?
Job Benefits
What do we offer in return?
We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits:
· Transportation and rice allowances
· Night differential, overtime pay and holiday pay
· 13th‑month pay and performance‑based bonus plan
· Day‑1 HMO healthcare coverage for you and dependents
· Outpatient medicine reimbursement
· Group life insurance, accidental death & disability cover
· Employee Assistance Program (EAP) with 24/7 confidential counselling
· Generous vacation and sick leave, available from Day 1
· Special Time Off: Take time off for those big moments in life, like getting married/civil ceremony, becoming a grandparent, and welcoming home a new pet.
· Company share plan & Sharesave scheme allowing discounted share purchase through monthly savings
So, what’s next?
If this sounds like the right opportunity for you, then we would love to hear from you! Click on apply to this job to send us your CV and cover letter and the relevant member of our global talent team will be in touch with you. Alternatively send your details to [email protected] .