Senior Software Engineer – PKI & Cybersecurity Services

Job Description

Senior Software Engineer – PKI & Cybersecurity Services

We are seeking an experienced Software Engineer specializing in Public Key Infrastructure (PKI), cryptographic services, and secure API development. This role is responsible for designing, building, deploying, and maintaining high-assurance PKI and security service solutions that support certificate issuance, lifecycle management, revocation services, key management, and secure integrations. The ideal candidate will have strong software engineering expertise combined with hands-on experience implementing cryptographic standards and secure development practices.

• Engage with stakeholders to understand business requirements and use cases.
• Design, develop, test, deploy, and maintain secure software solutions.
• Align development efforts with established architecture standards and best practices.
• Build and maintain back‑end applications, APIs, and microservices using technologies such as Java, Python, or C#.
• Collaborate with product owners, architects, designers, and cross‑functional teams.
• Manage application deployment in cloud and on-premises environments.
• Monitor application health, performance, security, and disaster recovery processes.
• Design and maintain database integrations using technologies such as Postgre
  
  SQL, Oracle, MySQL, Mongo
  
  DB, and Redis.
• Promote software engineering best practices including test‑driven development, continuous integration, and continuous delivery.
• Optimize infrastructure and deployment processes to improve reliability and resiliency.
• Support security controls that protect sensitive data through encryption and related security practices.
• Lead the full lifecycle of PKI and key management services, including requirements gathering, architecture, implementation, testing, deployment, monitoring, and support.
• Design and develop secure and scalable RESTful APIs and web services for certificate lifecycle management, certificate issuance, revocation services, key management, encryption, decryption, software signing, and related security functions.
• Implement access control mechanisms using OAuth, mutual TLS (mTLS), and least‑privilege principles.
• Develop and maintain PKI and cryptographic services using industry standards including X.509, PKCS standards, RSA, ECC, and AES.
• Define and enforce certificate policies and certificate profiles.
• Deploy and maintain applications through CI/CD pipelines across cloud and on-premises Kubernetes environments.
• Support application security through SAST, DAST, software quality monitoring, and vulnerability remediation activities.
• Participate in testing activities throughout the software development lifecycle.

• Bachelor’s Degree in Computer Science, Engineering, or a related field.
• 6+ years of IT experience.
• 4+ years of software engineering or software development experience using object‑oriented programming.
• Practical experience with at least two programming languages or advanced expertise in one programming language.
• Strong experience with secure coding practices.
• Strong understanding of software architecture, development methodologies, design principles, and test‑driven development.
• Experience developing back‑end services, APIs, and microservices.
• Strong knowledge of cryptographic algorithms and standards including RSA, ECC, AES, and X.509.
• Experience owning products or services through the full development lifecycle.
• Experience with Postgre
  
  SQL and application development.
• Experience working in Agile software development environments.
• Knowledge of cloud infrastructure and Google Cloud Platform.
• Experience with .NET Core and C# development.
• Knowledge of cybersecurity principles and software testing practices.
• Experience with Bouncy Castle cryptographic libraries.

• 2+ years of experience deploying and maintaining cloud infrastructure using Kubernetes or Open Shift.
• Experience managing SQL and No
  
  SQL database platforms, including Postgre
  
  SQL, Mongo
  
  DB, and Redis.
• 2+ years of experience building, maintaining, or integrating with production PKI systems.
• Experience supporting cryptographic interfaces and security services.
• Knowledge of…