Open to opportunities

Jakob Lindsay

@jakoblindsay

Message

Senior security engineer specializing in PKI, PAM, and security automation for enterprise readiness.

United States

Message

What I'm looking for

I’m looking to lead PKI/PAM and security automation in a large enterprise—driving crypto-agility, certificate modernization, and security reporting with Python, while partnering cross-functionally on incident response and ZTNA.

I’m a senior security engineer specializing in PKI, privileged access management, and security automation across large enterprise environments. I’ve led certificate lifecycle modernization, including post-quantum cryptography readiness, and improved vulnerability management at 300K+ asset scale with risk-based remediation.

I build Python-driven automation that strengthens security coverage, reporting, and operational efficiency—integrating with AppViewX for certificate request/renewal workflows and creating a Qualys automation client for ingestion and vulnerability normalization. From designing an ELK-based SIEM to partnering on incident response and ZTNA, I focus on measurable risk reduction, crypto-agility, and reliable security operations.

Experience

Work history, roles, and key accomplishments

Current

Sr IT Security Engineer

Current

Thermo Fisher Scientific

Jan 2025 - Present (1 year 4 months)

Engineers and maintains enterprise PKI infrastructure, managing full certificate lifecycles and automating AppViewX certificate request/renewal and retrieval workflows with Python to reduce manual renewal risk. Leads post-quantum cryptography adoption and crypto-agility validation, administers CyberArk/Delinea for least-privilege credential rotation and session auditing, and delivers AppViewX CERT

PKI Certificate Lifecycle AppViewX Python Post Quantum Cryptography CyberArk OpenSSL PKCS#11 HSM Power BI

IT Security Engineer II

Thermo Fisher Scientific

Jan 2022 - Jan 2025 (3 years)

Directed vulnerability management across 300K+ cloud and on-prem assets using Qualys VMDR, Wiz, and CrowdStrike, prioritizing remediation of thousands of vulnerabilities by exploitability and business impact. Built a Python Qualys API client (QualySDK) for asset ingestion and reporting normalization, created Power BI risk dashboards, and supported incident response by validating remediation effect

Vulnerability Management Wiz Crowdstrike Python API Integration Power BI Incident Response Executive Reporting

SOC Analyst

Mount St. Mary's University

Jan 2021 - Jan 2022 (1 year)

Architected and deployed a distributed ELK-based SIEM on Intel NUC cluster infrastructure with Dell SAN-backed storage to enable near real-time log ingestion, correlation, and threat detection. Built PowerShell and Python automation playbooks for threat hunting, compromise investigations, and phishing/email incident response, and delivered Kibana dashboards and weekly risk posture reports.

Kibana PowerShell Python Threat Hunting Incident Response Authentication Telemetry

Help Desk Technician

Mount St. Mary's University

Jan 2019 - Jan 2021 (2 years)

Provided Tier 1/2 technical support, resolving endpoint, network, and application issues within SLA targets while managing ticket queues and user onboarding/offboarding. Deployed campus AV systems, built and deployed 100+ mobile Zoom carts for hybrid learning during COVID-19, and created standardized Windows imaging workflows to reduce setup time and improve provisioning consistency.

Tier 1 Support Network Troubleshooting Zoom Video Equipment Integration Windows Imaging User Onboarding Ticketing Systems SLA Management