×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Senior PKI Engineer

Job in Charlotte, Mecklenburg County, North Carolina, 28245, USA
Listing for: Insight Global
Full Time position
Listed on 2026-03-11
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 80 - 93 USD Hourly USD 80.00 93.00 HOUR
Job Description & How to Apply Below

NO C2C - Needs to be able to work on a w2 without sponsorship

Insight Global is seeking a Senior PKI Engineer to join the Global Information Security (GIS) team at a Fortune 50 financial institution. This ideal candidate will design, implement, and operate enterprise-grade Public Key Infrastructure (PKI) services with a strong focus on Microsoft Active Directory Certificate Services (AD CS) and Active Directory (AD) integration. They will need to have hands‑on implementation and integration knowledge of certificate lifecycle management, CA hierarchy governance, enrollment automation, HSM‑backed key protection, CA backup/restore, migration, and integration with Windows Server, Linux, network/security devices, cloud providers, MDM/EDR, and zero‑trust tools.

  • Design and maintain enterprise PKI architectures including Root, Policy, and Issuing CAs.
  • Integrate PKI with Active Directory, Entra , Intune/MDM, GPOs, and Azure AD.
  • Develop certificate lifecycle policies including revocation and renewal.
  • Implement HSM‑backed key storage and disaster recovery designs.
Operations & Automation
  • Own certificate lifecycle management including automation.
  • Manage CRL and OCSP publication and availability.
  • Implement scripting and automation using Power Shell and APIs.
  • Operate and maintain secure PKI infrastructure.
Security & Compliance
  • Apply strong key management practices and CA hardening baselines.
  • Perform PKI risk assessments and access reviews.
  • Lead incident response for PKI‑related outages.
  • Maintain compliance with NIST, CA/B Forum, and internal frameworks.
REQUIRED SKILLS AND EXPERIENCE
  • 8+ years in Security Engineering or Identity Infrastructure.
  • 5+ years hands‑on with Microsoft AD CS and enterprise PKI.
  • Deep knowledge of X.509, CRLs, OCSP, EKUs, RSA/ECC, SHA-2.
  • Strong Power Shell, Python, or C# and Windows Server administration skills.
  • Experience with Linux PKI, TLS/SSL, VPN authentication.
  • Azure PKI integrations and HSM experience (Thales, Entrust, nCipher).

Compensation:

$80/hr to $93/hr.

Exact compensation may vary based on several factors, including skills, experience, and education.

Employees in this role will enjoy a comprehensive benefits package starting on day one of employment, including options for medical, dental, and vision insurance.

Eligibility to enroll in the 401(k) retirement plan begins after 90 days of employment.

Additionally, employees in this role will have access to paid sick leave and other paid time off benefits as required under the applicable law of the worksite location.

#J-18808-Ljbffr
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search