Microsoft PKI Expert/Architect

Overview

On Site
BASED ON EXPERIENCE
Full Time
Contract - W2
Contract - Independent

Skills

PKI
CERTIFICATES
CERTIFICATE LIFECYCLE
DIGITAL CERTIFICATE
AUTHENTICATION
MFA
AD CS
ACTIVE DIRECTORY CERTIFICATE SERVICES
EXPERIENCE
INTUNE
YUBIKEY
ENDPOINT
PUBLIC KEY
OCSP
CRL
CERTIFICATE AUTHORITIES
SSO
ENCRYPTION
IDENTITY
IAM
CLOUD PKI
HSM
SMART CARDS

Job Details

Job Title: Microsoft PKI Architect / Expert
Onsite/Hybrid
Location: Greenville, SC
Duration: Long-Term Renewable Contract
Work Authorization: W2 Only (No C2C or subcontracting)

Job Summary:
We are seeking a highly experienced Microsoft PKI Architect with a minimum of 10 years of hands-on expertise in designing, deploying, and managing enterprise-grade PKI solutions using Microsoft technologies. This role requires deep proficiency with Microsoft Active Directory Certificate Services (AD CS), certificate lifecycle automation, and secure PKI architectures tailored for regulated or enterprise environments.

Key Responsibilities:
- Design, implement, and manage Microsoft PKI infrastructure (AD CS, Root & Subordinate CAs) - Configure and maintain Certificate Templates, auto-enrollment, and Group Policy integration
- Manage CRLs, OCSP, and certificate revocation processes
- Integrate NDES/SCEP for non-domain device enrollment
- Support certificate-based authentication (802.1X, smart cards, VPN, Wi-Fi, Web)
- Automate certificate issuance and renewal via PowerShell and Microsoft Intune
- Collaborate with Identity, Security, and Infrastructure teams to align PKI with enterprise IAM strategies
- Conduct PKI assessments, health checks, and audits to ensure compliance and security
- Stay current with Microsoft Cloud PKI (Intune/Entra ID), encryption standards, and cryptographic trends

Requirements:
- 10+ years of experience specifically with Microsoft PKI and AD CS
- Strong expertise in certificate lifecycle management, CRL/OCSP, templates, and CA design
- Experience with MFA, SSO, IAM, smart cards, YubiKeys, and other authentication methods
- Hands-on experience in secure or regulated environments (e.g., federal, financial, healthcare)
- Strong scripting experience using PowerShell for PKI automation

Nice to Have:
- Microsoft certifications (e.g., SC-300, SC-100, or legacy MCSE/MCITP)
- Experience with HSMs and third-party PKI solutions (e.g., Venafi, DigiCert)
- Familiarity with Microsoft Intune, Cloud PKI, and Azure AD/Entra ID

About our Company

DataSoft Technologies is a highly recognized provider of professional IT Consulting services in the US. Founded in 1994, DataSoft Technologies, Inc. provides staff augmentation services for Information Technology and Automotive Services. Our team member benefits include:

  • Paid Holidays/Paid Time Off (PTO)

  • Medical/Dental Insurance

  • Vision Insurance

  • Short Term/Long Term Disability

  • Life Insurance

  • 401 (K)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Datasoft Technologies, Inc.