Role: PKI Engineer
Remote
Duration: 10+ Months
Pay Rate: $80 to $90
Overview: We are seeking an experienced Public Key Infrastructure (PKI) Engineer to join our team. The ideal candidate will have extensive experience in deploying and managing highly available PKI infrastructure and tools. They should be adept at building integrations with enterprise applications and providing strategic guidance for key lifecycle management processes. Familiarity with Hardware Security Modules (HSMs) and integration with Registration Authorities (RA), Certificate Authorities (CA), and key distribution is required. Programming experience is a plus, along with the ability to define target state architecture and target operating models.
Core Responsibilities:
- Design/deploy highly available PKI solutions(Microsoft AD CS, OpenSSL, HashiCorp Vault, AWS Certificate Manager)
- Integrate PKI with enterprise apps/systemsfor secure communication
- Key lifecycle management: Creation, distribution, rotation, renewal, revocation
- HSM configuration/managementfor secure key storage
- Define target state architecture& operating models for PKI infrastructure
- RA/CA integrationfor streamlined key issuance
- Troubleshoot PKI issueswith minimal business disruption
- Security monitoring/auditsfor compliance (NIST, ISO 27001)
Must-Have Skills:
- 5+ years PKI deployment/management
- HSM + RA/CA integration expertise
- Enterprise application integration
- Key lifecycle process mastery
- Cloud PKI (AWS/Azure) experience
- Programming (Python/Java/C++) preferred
Preferred:
- Bachelor’s in Computer Science, Information Security
- Security operations background
