Agilent inspires and supports discoveries that advance the quality of life. We provide life science, diagnostic and applied market laboratories worldwide with instruments, services, consumables, applications and expertise. Agilent enables customers to gain the answers and insights they seek - so they can do what they do best: improve the world around us. Information about Agilent is available at www.agilent.com
Within the Authentication & Directory Services team, the MPKI Services Manager leads the delivery and management of Agilent’s Managed PKI services — including user certificate enrollment and lifecycle management, cloud HSM management, and device, server, and user certificate procurement and provisioning — working with and overseeing external suppliers to ensure compliance and smooth, efficient operations. The role also owns the day-to-day service management of Agilent’s Prisma Access Browser secure enterprise browser deployment. Innovation, automation, and continuous improvement are central to the position. Beyond MPKI, the successful candidate carries additional responsibilities across the broader authentication services area — operations, project, and engineering work spanning Active Directory, Microsoft Entra ID, Microsoft Intune, and general automation.
Own end-to-end service management of Agilent’s MPKI services, covering user certificate enrollment and lifecycle management, cloud HSM administration, and device certificate procurement and provisioning
Manage the vendor relationship with the MPKI provider, holding suppliers accountable to SLAs, security standards, and compliance requirements
Oversee outsourced MPKI support and operations to ensure smooth, efficient delivery
Maintain compliant certificate provisioning and deprovisioning processes
Administer automated and exception-based certificate enrollment solutions
Drive automation and continuous improvement across the certificate lifecycle
Serve as service owner and administrator for the Palo Alto Networks Prisma Access Browser (PAB) — Agilent’s Chromium-based secure enterprise browser for unmanaged devices
Design, configure, and maintain PAB access and data-control policies, including last-mile DLP controls.
Configure and tune browser-based threat protections (phishing, malware, risky extensions) and generative-AI data guardrails
Enforce sign-in and access policies based on real-time device posture, integrating with Microsoft Entra ID and the broader Prisma SASE / Zero Trust framework
Manage the Palo Alto Networks vendor relationship and coordinate stakeholders across Security, End-User Computing, and IT towers
Monitor adoption, troubleshoot user-reported issues, and continuously improve policy coverage and user experience
Contribute to operations, project, and engineering work across Active Directory, Microsoft Entra ID, and Microsoft Intune
Collaborate with a cross-functional team of application developers, operations engineers, and architects to understand complex requirements and translate them into automated solutions
Partner with peers to support and improve architecture, systems, processes, standards, and tools
Actively participate in Identity and Access Management (IAM) strategy development, implementation, and operations
Bachelors or Masters Degree or University Degree or equivalent.
7 years experience with Managed Public Key Infrastructure
Experience with DigiCert platform is preferred.
Solid understanding of both Entra ID and Active Directory
Familiarity with Microsoft Intune for certificate delivery for users and devices
Proven experience managing outsourced suppliers against SLAs and compliance requirements
Understanding of testing and other development processes and methodologies
Understanding of information technology environments with global infrastructure
Understanding and experience with implementing and applying security best-practices to all initiatives
Strong cross-functional collaboration and communication skills
Additional Details
This job has a full time weekly schedule. It includes the option to work remotely.
Our pay ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. During the hiring process, a recruiter can share more about the specific pay range for a preferred location. Pay and benefit information by country are available at: https://careers.agilent.com/locations
Agilent Technologies Inc. is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other protected categories under all applicable laws.
Occasional
Day
No End Date
IT