We are seeking a skilled and experienced PKI Engineer to join cybersecurity team. The ideal candidate will have a strong background in Public Key Infrastructure, with hands-on experience in Microsoft Certificate Authority (MS CA), Thales Hardware Security Modules (HSM), and OpenSSL. You will be responsible for maintaining secure certificate services across enterprise environments.
responsibilities :
manage and maintain enterprise PKI infrastructure, including MS CA and subordinate CAs,
operate Thales HSMs for secure key storage and cryptographic operations,
develop and maintain scripts and tools using OpenSSL for certificate lifecycle management,
support certificate issuance, renewal, revocation, and auditing processes,
collaborate with security, network, and application teams to ensure secure communications,
monitor PKI health, performance, and compliance with internal and external standards,
participate in incident response and troubleshooting related to certificate issues.
requirements-expected :
minimum 3-6 years of experience working with PKI technologies,
strong knowledge of MS CA, Thales HSM, and OpenSSL,
familiarity with certificate formats (X.509), CRL, OCSP, and key management best practices,
experience with scripting (PowerShell, Bash) and automation of PKI tasks,
understanding of security frameworks and compliance requirements (e.g., ISO 27001, GDPR),
excellent problem-solving and communication skills.
offered :
Permanent contract of employment,
equipment package for home office,
private medical care and life insurance,
access to a benefit platform,
possibility of using increased tax-deductible costs in the case of creative work.
