We contracted to design and deliver a highly available PKI platform for a private cloud platform. The PKI service needed to satisfy assurance requirements and support DevOps, CICD pipelines, autoscaling compute and facilitation of certificate management to product owners.​

Governance deliverables:​ Certificate Practise Statement​ Key Signing Ceremony Documentation & facilitation/execution of the Ceremony itself​ ​ Other deliverables:​ Statement of Requirements​ Technical Design (HLD, LLD)​ Testing collateral (Plan, Scripts, Report)​ CA, RA, VA, Timestamping and Code Signing across two physical sites​ Automation of Certificate issuance and renewal​

As we were delivering into a new hosting platform, many of the technical dependencies were not in place or at various levels of maturity. Therefore, we worked collaboratively with the customer platform delivery teams to dovetail project plans, managing dependencies and delivery risk in a proactive manner. Additionally, this was the first time automation for certificate lifecycle management was introduced, with Unsung Consultants needing to work with assurance stakeholders to ensure they were comfortable with demonstrable enforcement of (previously manual) assurance checks through technology.​

Keyfactor EJBCA, Keyfactor Command, Keyfactor Sign Server, Microsoft SQL, RHEL, Microsoft Windows Sever​