PKI Engineer

The Senior PKI Engineer is responsible for driving IT security and productivity by enabling secure connectivity for technical assets and devices through the creation and management of digital certificates. This role is pivotal in designing, developing, and implementing PKI solutions that support the organization’s global infrastructure, ensuring alignment with security policies and industry best practices.

Key Responsibilities

• Maintain and upgrade existing PKI service components to support business continuity.
  
• Define, design, and deploy enterprise PKI systems for new or enhanced cryptographic services.
  
• Ensure PKI systems comply with internal security policies, standards, and industry best practices.
  
• Configure PKI systems, develop and execute test plans, and maintain system documentation.
  
• Serve as technical lead on security initiatives, collaborating with stakeholders, executives, and project teams.
  
• Develop and improve PKI/PKE best practices.
  
• Stay current on PKI/PKE technologies, industry trends, and emerging threats.
  
• Represent PKI Engineering on organizational project teams and ensure adherence to security standards.
  

Required Skills and Experience

Technical:

• Strong experience in Public Key Infrastructure (PKI)
  
• Experience with Venafi and/or KeyFactor certificate management suites
  
• CodeSigning and cryptographic services expertise
  
• Hardware Security Module (HSM) technology (SafeNet/nCipher/Safenet HSM platforms)
  
• PowerShell scripting and REST API understanding
  
• Cloud solution development experience (Azure/AWS) related to PKI management
  
• Strong authentication/multi-factor authentication technologies
  

Non-Technical:

• Excellent problem-solving and communication skills
  
• Leadership and project management capabilities
  
• Ability to influence decisions through data-driven presentations and critical thinking
  

Qualifications

• Bachelor’s or Master’s degree in Information Assurance, Computer Science, Cybersecurity, Information Systems, or related field
  
• 8+ years of engineering experience with increasing responsibility
  
• Security industry certification (CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, Security+)