×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Principal PKI Engineer

Job in Salt Lake City, Salt Lake County, Utah, 84193, USA
Listing for: ASSA ABLOY Global Solutions
Full Time position
Listed on 2026-02-16
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Overview

An Amazing Career Opportunity fora Principal PKI Engineer!!

Location:

Salt Lake City, Utah

Job

As a Principal PKI Engineer, you will lead the architecture, implementation, and operations of our Public Key Infrastructure as a Service (PKIaaS) platform. This role is critical to the secure issuance and lifecycle management of digital certificates in a multi-tenant, cloud-first environment. You will design and maintain scalable certificate hierarchies, manage HSMs and cryptographic assets, perform key ceremonies, and advise on cryptographic and operational best practices.

Experience with cloud computing in AWS is essential.

You will act as a senior technical authority, guiding the secure issuance, renewal, and revocation of certificate authorities and end user certificates, ensuring CA key material integrity, and mentoring supporting engineers and administrators. You’ll collaborate across security, infrastructure, compliance, and product teams to ensure that cryptographic trust is embedded and maintained throughout the service offering.

Who are we?

HID powers the trusted identities of the world’s people, places, and things, allowing people to transact safely, work productively and travel freely.

Identity and Access Management Solutions (IAMS):

HID Global IAM products protect more than 85 million user identities.

HID Global Identity and Access Management Solutions products protect more than 85 million user identities. At HID Global, we understand that no person, device, or workplace can go unprotected. This philosophy of Zero Trust drives us to create new advances in risk-based multi-factor authentication, leads us to secure user identities in converged access environments and drives the need to expand implementations with our industry-leading digital certificates and PKIaaS solution to manage them at scale.

Are you ready to make a difference? Join us and help shape the future of security.

Responsibilities

  • Designing and implementing PKI hierarchies (Root, Intermediate, Issuing CAs) to support multi-tenant internal and external PKIaaS customers.
  • Deploying and operating PKI services in AWS, using services such as ECS, EKS, EC2, VPC, Cloud Watch, S3, etc.
  • Performing and leading key ceremonies, maintaining strict procedural integrity in accordance with policy, compliance, and regulatory requirements.
  • Configuring and maintaining HSMs for secure storage of private keys and key material backup/recovery.
  • Overseeing the deployment, configuration, and operational lifecycle of CA software platforms (e.g., EJBCA, Microsoft ADCS, etc.).
  • Setting up and monitoring Certificate Revocation Lists (CRLs) and Online Certificate Status Protocol (OCSP) responders for high availability and low latency.
  • Developing and maintaining Business Continuity and Disaster Recovery (BCP/DR) plans for PKI infrastructure, including multi-region failover strategies in AWS.
  • Implementing PKI operational and security best practices, including role-based access controls, audit logging, and secure key lifecycle management.
  • Providing guidance on certificate issuance policies, trusted root management, code signing, S/MIME, and TLS authentication practices.
  • Collaborating with internal teams and external stakeholders to define PKI requirements and guide integration with enterprise systems, cloud platforms, and Dev Ops pipelines.
  • Defining and enforcing PKI operational and security best practices, policies, and SOPs across the organization.
  • Monitoring and auditing PKI infrastructure, perform root cause analysis on incidents, and lead continuous improvement efforts.

Your Experience and Background include:

  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Systems, or related field (or equivalent experience).
  • 7+ years of experience in Public Key Infrastructure (PKI), cryptographic key management, or information security engineering roles.
  • 3+ years in a lead, architect, or principal-level position managing enterprise or cloud-native PKI systems.
  • CISSP, CISM, or equivalent cybersecurity certification
  • Experience designing and operating large scale PKI in either on-premise or cloud environments.
  • Deep expertise in X.509 certificates,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search