Public Key Infrastructure – PKI Architect

This is a fully remote position, open to applicants in United States.

📋 Description

• Design, implement, and develop PKI architectures that facilitate secure authentication and support Zero Trust initiatives.

• Construct and maintain cloud-native solutions within AWS and Azure environments.

• Automate infrastructure, deployments, and operational workflows utilizing Ansible and CI/CD pipelines.

• Collaborate with security and engineering teams to adopt DevSecOps practices and ensure secure software delivery.

• Assist in compliance efforts aligned with FIPS, NIST 800-53, FISMA, and principles of Zero Trust Architecture.

• Monitor, diagnose, and enhance application and platform performance using security and observability tools.

⛳️ Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, Engineering, Mathematics, or a related technical discipline (or equivalent experience).

• Over 4 years of professional experience in PKI architecture, cybersecurity engineering, identity and access management (IAM), infrastructure/security architecture, or enterprise platform engineering (not limited to application development).

• Proven experience in designing and supporting PKI solutions within FICAM and Federal PKI (FPKI) settings.

• Proficient in X.509 certificate lifecycle management, automation, and policy formulation.

• Understanding of X.509 certificate policies and CA/Browser Forum standards.

• Experience in implementing certificate automation utilizing ACME.

• Familiarity with Hardware Security Modules (HSMs) and cryptographic key management.

• Knowledge of Post-Quantum Cryptography (PQC) concepts and associated migration strategies.

• Experience with PKI platforms such as DigiCert, Entrust, Microsoft AD CS, and Let's Encrypt.

• Proven experience supporting CAC/PIV smart cards, server, code-signing, and S/MIME certificates, including certificate trust chains and validation.

• Familiarity with cloud platforms like AWS and/or Azure.

• Understanding of DevSecOps practices, CI/CD pipelines, and source control platforms such as GitHub Enterprise.

• Knowledge of security frameworks and standards including NIST, FISMA, FIPS, and Zero Trust principles.

🏝️ Benefits

• Remote Work (Hybrid roles will be specified in the job post).

• Competitive Compensation Package.

• Medical, Dental, and Vision coverage.

• Life Insurance, Short/Long Term Disability benefits.

• Employee Assistance Program.

• 401(k) plan with 4% matching.

• Generous PTO vacation policy.

• Annual Continuing Education allowance.

• Annual Wellness Budget.

• Bonus Incentive Programs (Employee referrals and performance-based rewards).