Tech Lead Manager, PKI & Secrets Engineering

Summary

Join CoreWeave, a leading AI hyperscaler, as an experienced Engineer to lead the design, development, and maintenance of PKI and secrets management across a next-generation cloud. You will design and implement a comprehensive PKI architecture, a secrets management solution, and operational procedures. This role requires 5+ years of experience in information security with a focus on PKI and/or secrets management, proven leadership, and proficiency in various technologies. CoreWeave offers a competitive salary ($240,000 - $275,000 annually), comprehensive benefits including 100% employer-paid medical, dental, and vision insurance, paid parental leave, flexible PTO, and a hybrid work environment. The company prioritizes a collaborative culture and offers opportunities for professional growth.

Requirements

• 5+ years of of experience in information security, with a focus on PKI and/or secrets management
• Proven track record of leading small teams to scale large challenges
• Proven experience in designing, implementing, and managing PKI infrastructure, including highly available HSM designs
• Proficiency with popular secrets management tools (Hashicorp Vault, Doppler, etc)
• Solid foundation in container technologies and application containerization
• Demonstrated ability to design, troubleshoot, and thoroughly document solutions
• Proficiency in writing code with modern languages (Go, Python, Javascript, etc)

Responsibilities

• Design and implement a comprehensive PKI architecture, including Root CA, Intermediate CAs, issuance policies and HSMs
• Design and implement a secrets management solution to securely store and manage sensitive credentials across the organization
• Develop and implement operational procedures for PKI and secrets management, ensuring high availability, disaster recovery, and auditable logging
• Work closely with engineering teams to integrate PKI and secrets management into new and existing workflows

Preferred Qualifications

• Deep understanding of Kubernetes architecture, particularly how secrets and certificates should be managed within a cluster
• Knowledge of Kubernetes operators for managing PKI certificates (e.g., cert-manager)
• Experience with integrating Secrets Management solutions directly into Kubernetes deployments (e.g., Vault sidecar injection, Kubernetes Secrets Store CSI Driver)

Benefits

• Medical, dental, and vision insurance - 100% paid for by CoreWeave
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption
• Hybrid work environment
• Remote work considered for candidates outside 30 miles of office