PKI Lead Engineer
$122.9k - $150kASM Research, An Accenture Federal Services Company
The PKI Lead Engineer serves as the senior technical authority for the design, implementation, and sustainment of enterprise Public Key Infrastructure services that enable secure authentication, encryption, and digital signatures across the client’s IT environment. This role leads the lifecycle management of digital certificates and cryptographic keys, ensuring resilient, compliant, and well-governed PKI capabilities that protect sensitive information and support mission critical access control.
Key Responsibilities
Lead the design, implementation, and ongoing operations of enterprise PKI infrastructures, including root and subordinate certificate authorities, registration authorities, and associated hardware and software components.
Manage the full lifecycle of digital certificates and cryptographic keys for users, devices, applications, and services, including issuance, renewal, suspension, and revocation with strong controls and automation.
Develop, document, and enforce PKI policies, certification practice statements, standards, and procedures aligned to enterprise security and regulatory requirements.
Integrate PKI services with identity and access management platforms, directory services, network security controls, and secure application architectures to enable strong authentication and encryption.
Monitor, audit, and assess PKI infrastructure health and compliance, performing regular reviews, root cause analyses, and remediation activities to maintain high availability and integrity.
Lead the evaluation, selection, and implementation of PKI related tools, including certificate discovery, management, and automation solutions, and recommend improvements to strengthen cryptographic services.
Collaborate with security operations and application teams to analyze and respond to PKI related incidents, vulnerabilities, and findings, including support for penetration testing and secure code initiatives.
Provide expert guidance, training, and mentoring to engineers and developers on PKI usage, certificate management best practices, and secure cryptographic design patterns in enterprise environments.
Required Qualifications
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or related technical discipline, or equivalent relevant experience.
Minimum of 8 years of experience in cybersecurity, security engineering, or network security roles, including significant hands-on exposure to PKI or cryptographic services.
Demonstrated experience designing, implementing, and operating enterprise PKI solutions, including certificate authorities, key management, and certificate lifecycle workflows.
Strong knowledge of authentication, authorization, and encryption concepts, including TLS, digital signatures, certificate based access control, and related standards (for example, X.509, OCSP, CRL).
Ability to obtain and maintain a Public Trust investigation, with US citizenship required in support of federal client requirements.
Proficiency with Unix/Linux or similar operating systems and enterprise infrastructure environments used to host PKI and security services.
Candidates must possess a current secret security clearance.
Preferred Qualifications
Advanced cybersecurity certifications such as CISSP, CISM, CISA, or CRISC demonstrating broad security architecture and governance expertise.
Experience integrating PKI with identity and access management platforms, federated identity standards (for example, SAML), and role based access control models in large enterprises.
Background supporting PKI and cryptographic services in complex federal or regulated IT environments with rigorous compliance requirements.
Handson experience with certificate discovery and management tools, hardware security modules, and automation frameworks for largescale certificate deployment.
Familiarity with secure software development practices, application security testing, and remediation of cryptographic vulnerabilities across web and service architectures.
Prior experience leading small technical teams or serving as a subject matter expert for enterprise security initiatives.
Job-Specific Skills
Enterprise PKI Architecture  -- Designs and documents scalable PKI architectures, including root hierarchy, trust models, and integration patterns with enterprise systems.
Certificate Lifecycle Management  -- Establishes and operates repeatable processes and automation for issuing, renewing, and revoking certificates for diverse identities and workloads.
Cryptographic Standards Expertise  -- Applies industry cryptographic standards and algorithms to ensure strong encryption, signing, and key management practices in enterprise solutions.
Policy and Governance Development  -- Authors and maintains PKI policies, standards, and certification practice statements, aligning them with organizational risk and compliance needs.
Security Integration Engineering  -- Integrates PKI with identity, access management, network devices, and applications to enable secure, certificate based controls.
PKI Monitoring and Audit  -- Implements monitoring, logging, and audit processes that provide visibility into PKI operations and support internal and external assessments.
Incident Response for PKI  -- Leads investigation and remediation of PKI related incidents, including mis-issued certificates, key compromise, and cryptographic vulnerabilities.
Automation and Tooling  -- Leverages scripting, configuration management, and PKI toolsets to streamline certificate issuance, enrollment, and inventory management.
Cross Functional Collaboration  -- Works closely with security, infrastructure, application, and operations teams to align PKI capabilities with enterprise objectives and constraints.
Technical Mentorship  -- Coaches junior engineers and developers on PKI concepts, secure implementation patterns, and operational best practices to uplift team capability.
Preferred Skills
Experience engineering PKI solutions in hybrid cloud and on premises environments, including integration with major cloud providers’ identity and key management services.
Advanced scripting or automation capability (for example, PowerShell, Python, or similar) used to integrate PKI workflows with enterprise tooling and CI/CD pipelines.
Familiarity with certificate based network access control, VPN, and device authentication architectures in large, distributed environments.
Experience conducting PKI focused security assessments, including configuration reviews, key protection evaluations, and readiness for external compliance audits.
Compensation Ranges
Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees.
EEO Requirements
It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment.
Physical Requirements
The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions.
Disclaimer
The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
$122,900 - 150,000
EEO Requirements
It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment.
$209k - $238.5k
...Sr Lead Software Engineer, Analytics - Shopping (Remote-Eligible) What you’ll do: Lead a portfolio of diverse technology projects and a team of developers with deep experience in distributed microservices, and full stack systems to create solutions that help meet...SuggestedFull timePart timeInternshipLocal areaRemote work- A leading financial services firm is seeking a Sr Lead Software Engineer to lead diverse technology projects. The role involves overseeing a team of developers and collaborating on cloud-based solutions that enhance financial empowerment for millions of Americans. Candidates...SuggestedRemote work
$140.69k - $150.69k
...diversity and inclusion are core to our business. Join Evolent for the mission. Stay for the culture. What You’ll Be Doing: Lead Software Engineer (Arlington, VA) - Telecommuting Permissible. (multiple positions). Lead the design, development, and delivery of large-...SuggestedImmediate startRemote work$103.71k - $138.28k
...and hands-on position requiring the selected candidate to both lead and participate in multiple team environments and to provide independent... ...knowledge and experience in system architecture and engineering disciplines. Specific technical knowledge of enterprise level networking...SuggestedTemporary workRemote work$70 - $75 per hour
...Lead System Engineer Req number: R8001 Employment type: Full time Worksite flexibility: Remote Who we are CAI is a global services firm with over 9,000 associates worldwide and a yearly revenue of $1.3 billion+. We have over 40 years of excellence...SuggestedHourly payFull timeContract workApprenticeshipWork at officeLocal areaRemote workWorldwide$132.23k - $176.31k
...transformation depends on trust—trust in our networks, our platforms, and our ability to protect what matters most. The Senior Lead Cloud Engineer position plays a critical role in delivering on that promise. Provide expert technical direction in the analysis of...Temporary workRemote workWork from home- ...Capital One is looking for a Lead Front End Engineer to join their Capital One Software team. This remote role will focus on building the marketing website utilizing React, Next.js, and Tailwind CSS, ensuring high performance and accessibility. The ideal candidate will...Remote work
$116.4k - $204.1k
...We're looking for a Lead Product Software Engineer - Cloud Operations to join I nnovateHub , our startup-within-the-enterprise that co-designs AI solutions with customers across Wolters Kluwer's Tax and Accounting product portfolio. In this role you'll own the infrastructure...Work at office- ...About the Role We are seeking an experienced Salesforce Technical Lead to act as the senior technical authority for our Salesforce platform. This is a strategic and hands‑on leadership role responsible for defining technical architecture, governing solution design, leading...
$67.9k - $199.14k
...at a time. Position Summary Aetna’s Reporting Solutions team is looking for an initiative‑taking Lead Python Developer with 3+ years of experience in software engineering with Python in a professional environment to join our Reporting Solutions team. The Lead Python Developer...Hourly payFull timeTemporary workLocal areaRemote work$140k
...capability SMEs across the program. ~ Experience working with Scrum Masters, Business Analysts, Developers, and Quality Assurance engineers while ensuring they are complying with program processes and norms. ~ Experience working in a scaled Agile environment. ~...Contract workRemote workShift work$141.2k - $414.4k
...Job Description We are seeking aWe are seeking an experienced engineering leader to lead the software engineering group responsible for building and operating a new, enterprise-scale CI/CD platform that will standardize and automate software delivery across OCI....Temporary workFlexible hours$97.5k - $199.5k
...knowledge to advance Oracle Health's strategic priorities. As a Lead Consulting Developer, you will focus on developing and... ...priorities Mentor and provide technical guidance to junior engineers and peers Drive adoption of engineering best practices across...Temporary workFlexible hours$130k
.... Patient data. Client communications. Business insights. All at their fingertips.**In this Role You will:*** Lead a small, highly effective agile engineering team (typically 3–5 developers), owning the team’s delivery, quality, and overall health.* Manage and develop...Local areaWorldwide$25 - $50 per hour
...Role Overview TSA is accepting applications for Lead and Supervisory Transportation Security Officers at airports in Millbrook. These roles are ideal for individuals looking to step into leadership positions within airport security operations. TSA provides training...Shift workNight shiftWeekend work$120k - $150k
.... Stay for the culture. What You'll Be Doing: Responsibilities Assist in managing day-to-day activities of the software engineering team, ensuring alignment with project goals and timelines. Provide technical guidance and mentorship to team members to support...Immediate start$25 - $50 per hour
...Role Overview TSA is accepting applications for Lead and Supervisory Transportation Security Officers at airports in Montgomery. These roles are ideal for individuals looking to step into leadership positions within airport security operations. TSA provides training...Shift workNight shiftWeekend work$160.2k - $263.7k
...Description The Role We are looking for a Manager, Software Engineer to elevate the quality, trust, and operational efficiency of... ...within the Simulation organization at large. This role will lead a growing team's efforts to build out efficient infrastructure and...Local areaRemote workWork from homeFlexible hours$105.79k - $141.05k
...ready to take ownership, deliver meaningful impact, and help shape the future of AI-ready connectivity, join us today. The Role As a SR Lead Commercial Strategist, you will play a crucial role in ensuring the success of our sales and customer-facing teams. Your primary...Temporary workLocal areaRemote work- ...Norstella is seeking a Solutions Lead for its Solutions Advisory team. This role involves cross-functional collaboration to design and deliver customer-facing products while supporting Norstella's AI product journey. Candidates should have a strong background in solutions...Remote work
$79.4k
...Position Overview The Field Office Support Lead manages field IT support operations to ensure end‑user devices, connectivity, and... ...complex issues, working across field technicians, service desk, and engineering teams to resolve incidents and prevent recurrences. Monitor...Contract workWork experience placementWork at officeLocal areaRemote work- ...A leading construction firm in Montgomery, Alabama is seeking a Quality Control Manager to implement and oversee quality control processes... ...projects. The ideal candidate will have a degree in civil engineering and at least 5-7 years of experience in large commercial...
$94.1k - $154.5k
...A leading technology firm is seeking an NOC Lead to manage Network Operations Center activities. The ideal candidate will have over 8 years of experience in service delivery management and at least 3 years in a leadership role. Responsibilities include coordinating IT...Night shift- Data Conversion & Migration Experience with experience in Azure Services (Azure Data Factory, Azure Data Bricks, Azure BLOB) , Python Scripting 8+ Years of experience in ETL 5+ Years of experience in Azure Data Factory is a must 5+ Years of experience in Azure Databricks...
- It's fun to work in a company where people truly BELIEVE in what they are doing! We're committed to bringing passion and customer focus to the business. Your Day to Day Exhibit the Culture of Performance and Core Values; Teamwork, Integrity, and Excellence by regularly...Seasonal workFlexible hoursNight shiftWeekend workDay shift
$130.2k - $143.9k
...A prominent public sector solutions firm located in Montgomery, Alabama, is seeking a Product Manager to lead a team in defining and managing product strategies for enterprise SaaS products. The ideal candidate will have over 10 years of experience in product management...Remote work- ...internal development - 70% of General Managers came from within Here are the qualities we are looking for: • 1+ years of experience leading and motivating a team • Customer-first mentality • Enthusiastic and friendly • Desire to learn and grow • Ability to work...Hourly payWork experience placementShift workAfternoon shift
- ...Shift Lead Are you looking for an entry-mid level job in the restaurant industry that can lead to a career? We offer COMPETITIVE STARTING PAY, FLEXIBLE SCHEDULES, HEALTH BENEFITS, and 401k,! Are you dedicated and ambitious? Come work with us. Job Summary: The...Work at officeFlexible hoursShift workNight shift
- ...clients and other external entities. Key Responsibilities - Lead and oversee the project CMS certification lifecycle, including... ...objectives. - Apply business process improvement and re-engineering methodologies to certification workflows to improve efficiency,...Minimum wageContract workTemporary workWork experience placementRemote work
$120.97k
...pursue work that is mutually beneficial to CDM Smith and our clients. Working with the PL, other One Water DLs, and planning and engineering and leaders across the organization, you will be empowered to deliver innovative solutions while interacting effectively with clients...H1bLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to PKI Lead Engineer. Be the first to apply!


