Public Key Infrastructure Engineer (PKI) - Information Security

Public Key Infrastructure Engineer - Information Technology / Infrastructure Security

Location: Dallas, TX - In office 3 days but could be 5 depending on organization needs and company policies.

Role Type: Contract Position

Duration: 12+Months

About Our Client - Our client is a major Texas-based energy infrastructure company that delivers electricity to millions of customers across the state. With decades of operational excellence in the utility sector, they maintain one of the largest electric transmission and distribution systems in the United States. Operating throughout Texas, this organization is committed to modernizing their infrastructure while maintaining the highest standards of reliability and security. Their mission centers on powering communities safely and efficiently while embracing innovative technologies to enhance service delivery and grid resilience.

Job Description - As a Public Key Infrastructure Engineer, you'll play a critical role in securing our client's enterprise infrastructure by developing, implementing, and maintaining robust PKI processes and controls. Your day-to-day work will focus on managing Certificate Authority (CA) operations, Active Directory integration, and platform authentication across Windows and Unix environments. You'll drive automation initiatives by developing and integrating tools that streamline PKI management while ensuring complete auditability and compliance.

This position offers a unique opportunity to shape the security foundation of a critical infrastructure organization. You'll collaborate closely with Security and Infrastructure teams to design integrated solutions that protect essential systems serving millions of customers. The ideal candidate is passionate about cryptography, automation, and building secure, scalable systems that can evolve with emerging threats and technologies.

Working in a fast-paced, results-driven environment, you'll manage multiple competing priorities while delivering high-quality solutions to complex security challenges. This role reports to IT Infrastructure leadership and requires cross-functional collaboration with stakeholders at all organizational levels.

Duties and Responsibilities

• Design, implement, and maintain Certificate Authority (CA) management systems and processes
• Develop automation solutions for certificate lifecycle management, deployment, and tracking across enterprise systems
• Integrate PKI infrastructure with Active Directory and authentication platforms for Windows and Unix environments
• Assess data protection approaches and implement encryption technologies including TLS, PGP, PKI, and HSM
• Manage and prioritize multiple PKI-related projects with competing resource requirements and timelines
• Conduct security assessments, vulnerability testing, and remediation activities for PKI infrastructure
• Create and maintain comprehensive documentation to ensure auditability and compliance with security standards
• Collaborate with Security and Infrastructure teams to ensure seamless integration and automation of security controls
• Develop high-level scripts using Python, KSH, Bash, and PowerShell to automate PKI operations
• Serve as technical liaison between IT teams and stakeholders, providing clear communication on PKI initiatives and requirements

Required Experience/Skills

• 10+ years of experience working in IT Infrastructure roles with demonstrated design experience
• Proven experience working within agile development methodologies (Kanban, Scrum, etc.)
• Strong background in continuous delivery and deployment practices
• Deep understanding of cryptography, key management, masking, tokenization, and data protection technologies
• Hands-on experience deploying and managing encryption technologies such as TLS, PGP, PKI, and HSM
• Knowledge of system security vulnerabilities, remediation techniques, and penetration testing methods
• Proficiency in high-level scripting languages (Python) and shell scripting (KSH, Bash, PowerShell)
• Experience with distributed platforms, particularly Linux (Windows Server experience is a plus)
• Strong knowledge of network and system security solutions, concepts, and technologies
• Excellent communication skills with ability to work effectively across all organizational levels
• Proven ability to collaborate and negotiate with internal stakeholders
• Demonstrated capability to manage multiple projects simultaneously with competing priorities

Nice-to-Haves

• 3+ years of direct experience working in a PKI environment
• Background with Certificate Management tools such as Venafi, Keyfactor, or similar platforms
• Knowledge and understanding of Entrust Public Certificates and associated processes
• Experience with server configuration management tools (Ansible, Puppet, etc.)
• Familiarity with enterprise server hardware (Dell or HP)
• Experience with Identity Management solutions such as IBM's TIM/TAM
• Knowledge of IoT device management and security
• Experience designing and implementing Red Hat products (IdM, Satellite, RHV, RHDS, Ceph)
• AWS Cloud experience including EC2, S3, ALB/NLB, Lambda, and RDS
• Experience designing, optimizing, and troubleshooting public cloud platforms with complex application stacks
• Previous experience as a Technical Architect, Solutions Architect, Technical Design Authority, or Solutions Designer
• Personal interest in critical infrastructure security and energy sector technology

Education - No specific educational requirements. Relevant certifications and hands-on experience are valued.

Keywords: PKI Engineer | Certificate Authority | Cryptography | Cyber Security | Infrastructure Security | Encryption | Linux Administrator | Windows Server | Python Scripting | Ansible | AWS Cloud | Identity Management | Agile Development | DevSecOps