Pki Analyst

Location: Taguig City, Metro Manila – 2 days per week onsite

Role Purpose

This role is an operational position within NCC Group’s Managed Services organisation, responsible for the day to day operation and support of a managed Public Key Infrastructure (PKI) service for a regulated financial services client.

The role focuses on the effective running, maintenance, and governance of PKI services delivered using the Sectigo platform. This includes managing certificate lifecycles at scale, maintaining accurate PKI inventories, supporting access governance for cryptographic key management systems, and responding to PKI related incidents and service requests.

The role operates within defined managed service processes and escalation paths and works closely with service delivery teams, suppliers, and client stakeholders. The emphasis is on service reliability, risk awareness, and clear communication rather than PKI architecture or engineering design.

The role requires strong operational discipline, an understanding of cryptographic risk, and the ability to support both planned and unplanned maintenance activities while ensuring service levels and client expectations are met.

Summary

• Provide operational support for managed PKI services.
• Maintain an accurate and up to date inventory of public and private certificates, including ownership, purpose, issuing authority, and lifecycle state.
• Manage certificate issuance, renewal, revocation, and re keying activities in line with agreed PKI processes and security standards.
• Support the migration and re issuance of existing certificates into the client’s defined PKI structure.
• Monitor certificate expiry and service availability to proactively prevent certificate related outages.
• Maintain and review user access to cryptographic key management systems, ensuring privileged access is restricted, reviewed, and removed appropriately.

• Support joiner, mover, and leaver access management processes for PKI platforms.
• Act as an operational point of contact for PKI related incidents, service requests, and escalations.
• Support planned maintenance activities through change coordination and stakeholder communication.
• Support unplanned maintenance and incident response activities, providing timely and accurate updates to internal teams and client stakeholders.
• Work with internal teams and third party suppliers to ensure PKI platform availability meets agreed service levels.
• Identify and escalate weaknesses or risks within cryptographic services in line with managed services governance and escalation procedures.
• Contribute to the continuous improvement of PKI processes, documentation, and operational runbooks.
• Deliver a professional, customer focused service aligned to managed services delivery standards.

Minimum Requirements

• Experience working in a managed service, security operations, IAM, or security platform operations role.
• Practical understanding of PKI concepts, including certificates, certificate authorities, trust chains, expiry, and revocation.
• Experience supporting certificate lifecycle management within an enterprise or managed service environment.
• Experience working with systems requiring privileged access and strong access governance.
• Strong process discipline and experience working to defined procedures and SLAs.
• Experience working in a client facing or service delivery role.

Desirable Requirements

• Experience with enterprise PKI platforms such as Sectigo, DigiCert, Microsoft AD CS, Venafi, or similar.
• Experience supporting regulated or financial services clients.
• Familiarity with cryptographic key management systems or HSM concepts.
• ITIL or service management experience.
• Security related certifications such as Security+, GIAC, CISSP, or equivalent.
• Degree in a relevant technical or security related discipline.

Functional Overview:

The Managed PKI Services function is responsible for the operational delivery, maintenance, and governance of Public Key Infrastructure services for NCC Group clients.

The function provides day to day management of enterprise PKI platforms, supporting certificate lifecycle management, cryptographic key governance, and service reliability within regulated and security sensitive environments. This includes maintaining accurate certificate inventories, managing issuance, renewal, revocation, and access controls, and ensuring PKI services operate in line with agreed service levels.

The function acts as an operational interface between clients, internal service delivery teams, and third party vendors, handling PKI related incidents, service requests, and maintenance activities. Clear communication, risk awareness, and process discipline are central to the function’s delivery.

Managed PKI Services operates within defined governance, change, and escalation frameworks, identifying operational risks and service issues and escalating appropriately to senior leadership. The function contributes to continuous service improvement by refining processes, documentation, and controls to improve resilience, reduce service disruption, and strengthen cryptographic security posture.

Ways of working

• Focusing on Clients and Customers.

• Working as One NCC.

• Always Learning.

• Being Inclusive and Respectful.

• Delivering Brilliantly.

Our company

At NCC Group, our mission is to create a more secure digital future. That mission underpins everything we do, from our work with our incredible clients to groundbreaking research shaping our industry. Our teams' partner with clients across a multitude of industries, delving into, securing new products, and emerging technologies, as well as solving complex security problems. As global leaders in cyber and escrow, NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks.

Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support.

Come join us?

What do we offer in return?

We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits:

• Transportation and rice allowances

• Night differential, overtime pay and holiday pay

• 13th‑month pay and performance‑based bonus plan

• Day‑1 HMO healthcare coverage for you and dependents

• Outpatient medicine reimbursement

• Group life insurance, accidental death & disability cover

• Employee Assistance Program (EAP) with 24/7 confidential counselling

• Generous vacation and sick leave, available from Day 1

• Special Time Off: Take time off for those big moments in life, like getting married/civil ceremony, becoming a grandparent, and welcoming home a new pet.

• Company share plan & Sharesave scheme allowing discounted share purchase through monthly savings

So, what’s next?

If this sounds like the right opportunity for you, then we would love to hear from you! Click on apply to this job to send us your CV and cover letter and the relevant member of our global talent team will be in touch with you. Alternatively send your details to global.ta@nccgroup.com .

We assess, develop and manage cyber threats across our increasingly connected society. We advise global technology, manufacturers, financial institutions, critical national infrastructure providers, retailers and governments on the best way to keep businesses, software and personal data safe.

With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face.

We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security.

Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide.

We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.

If you do not want us to retain your details, you can utilise the Manage Your Data tool provided by Pinpoint or contact us directly at: global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Notice.

We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.

Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process.