PKI Engineer, Mid

Job description

The PKI Engineer, Mid designs, implements, and maintains enterprise public key infrastructure services that underpin secure authentication, encryption, and digital signatures for mission‑critical systems. The role owns certificate lifecycle management processes, ensuring robust issuance, renewal, revocation, and automation patterns for user, device, application, and service identities. Working in a federal IT environment, this position integrates PKI capabilities with identity platforms, network security controls, applications, and cloud services, resolving complex certificate and trust issues across heterogeneous environments. The engineer develops and enforces PKI policies, technical standards, and operational procedures, collaborating with security stakeholders to ensure resilience, compliance, and audit‑ready operation of the PKI. Key Responsibilities: - Architect, deploy, and operate PKI infrastructures, including certificate authorities, registration authorities, and OCSP/CRL services across on‑premises and cloud environments. - Design and manage scalable certificate lifecycle processes (enrollment, distribution, renewal, revocation, and automation) for large fleets of endpoi...