Senior PKI/Venafi Architect

qode.world Logo

qode.world

πŸ“Remote - United States

Summary

Join our team as a Senior PKI/Venafi Architect and lead the design, implementation, and support of enterprise-grade PKI and certificate lifecycle management solutions. This is a remote, full-time position requiring 12+ years of experience in Information Security Architecture, with at least 5 years specializing in PKI, certificate management, and cryptography. You will be responsible for architecting secure, scalable cryptographic solutions and integrating PKI and cryptographic services with cloud platforms. Success in this role demands a strong architectural background and proven success in delivering secure, scalable, and compliant cryptographic infrastructures. You will partner with various teams to ensure secure adoption of cryptographic services and contribute to the security roadmap. This is a greenfield opportunity to make a significant impact.

Requirements

  • 12+ years of experience in Information Security Architecture, with at least 5 years specializing in PKI, certificate management, and cryptography
  • Hands-on experience with Venafi Trust Protection Platform – policy configuration, workflow setup, agent integrations, etc
  • Strong understanding of PKI architecture, CA hierarchy, HSMs, OCSP, CRLs, and key protection mechanisms
  • Deep knowledge of cryptographic standards (RSA, ECC, AES, SHA, TLS/SSL, etc.) and security protocols
  • Experience in deploying PKI/certificate solutions in cloud (AWS, Azure, GCP) and hybrid environments
  • Proven track record of working as an Architect, leading security design sessions, risk assessments, and solution implementations
  • Strong scripting or automation skills (e.g., PowerShell, Python, REST APIs) for certificate lifecycle automation
  • Familiarity with security frameworks like NIST, ISO 27001, PCI-DSS, and regulatory compliance

Responsibilities

  • Lead the architecture, engineering, and integration of Public Key Infrastructure (PKI) and certificate management systems using Venafi Trust Protection Platform
  • Drive all phases of the project lifecycle: discovery, design, implementation, support, and optimization
  • Develop enterprise PKI-DSS (Public Key Infrastructure – Data Security Standards) aligned with compliance, audit, and security frameworks
  • Architect secure, scalable cryptographic solutions involving digital certificates, TLS/SSL, key management, encryption mechanisms, and secure protocols
  • Oversee integration of PKI and cryptographic services with cloud platforms (AWS, Azure, GCP) and DevSecOps toolchains
  • Define and enforce policies for certificate lifecycle management, including issuance, renewal, rotation, and revocation
  • Partner with security, infrastructure, and application teams to ensure secure adoption of cryptographic services
  • Evaluate emerging technologies, contribute to security roadmap, and continuously improve cryptographic posture

Preferred Qualifications

  • Venafi or other relevant certifications
  • Experience with HSMs (Thales, SafeNet, AWS CloudHSM)

Remote

Cybersecurity

Senior

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.