top of page
Search

Cybersecurity PKI Systems Administrator Consultant (Valencia, Spain or REMOTE)

  • Writer: IdealStaffs
    IdealStaffs
  • 3 days ago
  • 2 min read

Role: Consultant

Client: United Nations Organization

Contract type: Freelancer / Self-Employed / B2B only

Location:  on-site from Valencia or Remote nearshore

Duration: 12 months extensible based on performance and budget

Visa sponsorship: Not available

Oncall 24/7: One week per month (rotation is subject to the number of team members)


To apply for this position, please send your resume at office@idealstaffs.com and mention the job title that you are applying for.



IdealStaffs is looking for a highly skilled cybersecurity consultant with at least 5 years of experience and a strong focus on cryptography, certificate-based solutions, and data protection best practices. The ideal candidate will possess a deep understanding of confidentiality, non-repudiation, and data integrity, applying a security-first mindset to protect digital environments.

This role plays a vital part in designing, implementing, and managing secure access and web protection solutions across hybrid enterprise infrastructures. The consultant will take the lead in managing Web Application Firewalls (WAF), Bot Mitigation, DDoS protection, Single Sign-On (SSO), and certificate lifecycle management using modern cloud-native platforms like Cloudflare.


Key Responsibilities:

  • Manage and monitor Cloudflare security services including WAF, DDoS protection, Zero Trust Access, API Shield, Bot Management, and Rate Limiting rules.

  • Support SSO integrations using federation protocols (SAML, OIDC, OAuth) for both cloud and internal applications.

  • Maintain certificate management processes: issuance, renewal, revocation, automation, and auditing.

  • Operate and manage PKI environments across hybrid infrastructures using Microsoft CA and open-source/public solutions such as EJBCA, Dogtag, and Cloudflare SSL.

  • Automate certificate workflows using scripting languages like PowerShell and Python.

  • Administer DNS and proxy configurations within Cloudflare, including secure DNS zones, split-horizon DNS, and DNSSEC.

  • Support onboarding/offboarding processes and enforce Zero Trust policies and identity-based controls.

  • Collaborate with internal teams to handle security operations, including incident response for identity or web-based threats.

  • Document operational procedures, configuration baselines, and best practices to ensure continuity and compliance.

  • Assist in audit and compliance activities, offering technical insight and accurate documentation of the current security posture.

  • Contribute to awareness and training initiatives promoting cybersecurity culture across the organization.

  • Perform additional related duties as required.


Essential Technical Skills:

  • Proven experience configuring and managing Cloudflare security services (WAF, DDoS, Zero Trust).

  • In-depth knowledge of SSO protocols (SAML, OAuth2, OIDC) and MFA integration using enterprise identity providers.

  • Expertise in certificate-based authentication, encryption, and digital signatures, especially within automated deployment environments.

  • Hands-on experience with PKI solutions such as Microsoft CA, EJBCA, and public CAs (Entrust, DigiCert, Sectigo).

  • Scripting skills in PowerShell or Python for automating certificate and security tasks.

  • Strong familiarity with Zero Trust architecture and its practical application.


Desirable Qualifications:

  • Experience responding to incidents involving WAF, DDoS, or authentication threats (e.g., credential stuffing, session hijacking).

  • Knowledge of tools such as ServiceNow, CyberArk, KeyFactor, Thales/nCipher.

  • Understanding of DNS security practices, including DNSSEC, DMARC, and secure proxy configurations.

  • Experience managing hybrid and cloud-native infrastructure across identity and security domains.


Soft Skills:

  • Excellent communication and customer-facing skills.

  • Strong documentation and reporting abilities.

  • Creative problem-solving mindset with a drive for innovation.

  • Team player with conflict resolution and collaboration skills.

  • Eagerness to learn and grow professionally.

  • Willingness to share knowledge and support others.


Work Modality:

  • Teleworking: ✔️ Yes, in coordination with the team

  • On-call Requirements: ✔️ One week or more per month (rotational, depending on team size)

Comments

Commenting on this post isn't available anymore. Contact the site owner for more info.
Post: Blog2 Post
bottom of page