Home Invites Chat Forums News Singles
Home > Career Center > Job Seekers > Job Search
Job Title: Senior PKI Engineer
Company Name: General Dynamics IT
Location: Falls Church, VA
Position Type: Full Time
Post Date: 02/26/2026
Expire Date: 03/31/2026
Job Categories: Engineering, Information Technology
Job Description
Senior PKI Engineer

Position Summary

The Senior PKI Engineer is responsible for designing, implementing, securing, and maintaining enterprise Public Key Infrastructure (PKI) services that support mission-critical authentication, encryption, digital signature, and certificate lifecycle operations. This role requires a general understanding of PIV implementation in the government space.

Key Responsibilities

  • Administer enterprise PKI systems, including Certificate Authorities (CAs), Online Certificate Status Protocol (OCSP) responders, Hardware Security Modules (HSMs), and certificate lifecycle service products.
  • Deep understanding and application of PKCS standards.
  • Implement PKI in hybrid or cloud-based environments such as Azure, AWS, and Google Cloud Platform (GCP).
  • Manage and configure Microsoft Active Directory Certificate Services (ADCS).

Automation & Integration

  • Support the automation of certificate issuance, renewal, monitoring, and compliance reporting processes.

Operations & Troubleshooting

  • Provide Tier III support for PKI, certificate-based authentication, TLS/SSL, smart cards, and identity management systems.
  • Troubleshoot issues such as certificate chain validation, revocation, OCSP/CRL failures, and integration challenges.
  • Ensure high availability, redundancy, and disaster recovery readiness for PKI services.

Modernization & Emerging Technologies

  • Support for post-quantum cryptography (PQC) transitions and compliance with emerging NIST standards.
  • Integrate cost-efficient open-source cryptographic libraries and JRE/JDK solutions.
  • Support zero-trust architecture strategies and cloud migration efforts.
  • Explore and evaluate new technologies to enhance scalability, automation, and security.

Required Qualifications

  • Education: Bachelors degree in Computer Science, Cybersecurity, Engineering, or equivalent experience.
  • Experience:
    • 7+ years of hands-on experience in PKI engineering, certificate services, and cryptographic system management.
    • Deep expertise with:
      • Microsoft Active Directory Certificate Services (ADCS)
      • Various HSMs (Thales, SafeNet, AWS CloudHSM, etc.)
      • OCSP/CRL infrastructure
      • TLS/SSL, S/MIME, and device certificates
      • Smart card and PIV/CAC authentication systems
    • Strong understanding of:
      • NIST standards (e.g., SP 800-57, 800-131A, 800-63)
      • FIPS 140-2/3 compliance
      • Cryptography and key algorithms (X.509, ASN.1, RSA/ECC/PQC)
    • Proficiency in scripting/automation via PowerShell, Python, or Bash.
    • Background in solving vulnerability management challenges and addressing POA&M items.
    • Expertise in leading key ceremonies and managing cryptographic material securely.
  • Technical Skills:
    • Proficiency in networking, firewall rule implementations, and TLS/SSL troubleshooting.
    • In-depth knowledge of Windows environments, including certificate installation for CAPI and diverse applications/appliances.
    • Experience in SNMP monitoring, SIEM/syslog tools, and Docker troubleshooting.
    • Familiarity with VPN solutions (e.g., Cisco Secure Client) and NAC protocols like 802.1X.

Preferred Qualifications

  • Knowledge and experience with PQC migration and NIST PQC algorithm adoption.
  • Familiarity with identity and access management (IAM/IAG) platforms, IDMS, and federation systems.
  • Hands-on experience with cloud-native PKI solutions (e.g., Azure Key Vault, AWS ACM Private CA).
  • Relevant certifications, such as:
    • CISSP
    • CCSP
    • Security+
    • Microsoft security certifications
  • Experience in high-assurance or federal agency-regulated environments.

Share |
Contact Information
Company Name: General Dynamics IT
Website:https://www.gdit.com/careers/job/ae270f22d/senior-pki-engineer/?source=AutoAppend_HBCU
Apply Now | Forward Job to a Friend | More Jobs From This Employer

(Advertise Here)
Latest Member Activity
annabel castro just became a new member. 05:21PM
jason smith just edited his profile. 02:17PM
jason smith just became a new member. 02:01PM
sandra thomas just edited her profile. 11:08AM
sandra thomas just became a new member. 10:13AM
cortney pevehouse just became a new member. 08:19PM
tony guzman just became a new member. 11:14PM
krystal mccowan just became a new member. 07:42PM
pretty mariah just became a new member. 04:36PM
john marcel just became a new member. 03:57PM
ryan saunders just became a new member. 12:13PM
henry chad just became a new member. 08:03PM
>> more | invite friends