Job Description
We are looking for a skilled and motivated PKI Engineer to join our Certificate Management Team. In this role, you will be responsible for the design and integration of automated certificate lifecycle management solutions using the Certificate Lifecycle Management (CLM) platform, while ensuring compliance with modern security frameworks such as NIST 1800-16. You will contribute to building a scalable, secure, and policy-driven PKI infrastructure that supports various technology stacks and cryptographic use cases across the organization.
Development & Integration
• Develop and integrate automated key and certificate lifecycle management workflows using CI/CD pipelines and product specific drivers.
• Implement and test integrations with diverse platforms such as Windows, Linux, Java and Kubernetes to support TLS, digital signatures, and encryption use cases.
Automation & Support
• Contribute to building and maintaining an enterprise-wide certificate inventory through automated discovery and scanning.
• Support the adoption of hardware-backed key containers such as HSMs and smart cards where applicable.
• Work closely with internal experts and cross-functional teams to implement scalable and compliant solutions.
• Provide technical guidance on key and certificate store interfaces and cryptographic libraries (e.g., OpenSSL, Bouncy Castle, MS CNG).
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
Technical Skills
• Solid understanding of Public Key Infrastructure (PKI) and certificate lifecycle management.
• Extended experience with Sectigo SCM and ADCS.
• Familiarity with CI/CD tools and automation (GitHub).
• Experience working with cryptographic libraries and certificate/key stores (PKCS#12, JKS, Windows Cert Store).
• Development skills
• Working knowledge of TLS/SSL, digital signatures, and encryption technologies.
• Experience with hardware key containers (HSM, smart card) is a strong asset.
Soft Skills
• Team-oriented with a collaborative mindset.
• Open-minded, adaptable, and eager to learn.
• Strong analytical thinking and ability to understand problems in their broader context.
• Capable of forming and articulating well-founded technical judgments.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.