PKI Engineer

Description
Mid-level Security Engineer is responsible for security design, implement and maintain vendor security applications primarily related to crypto/security functions and modules.
You would be part of the highly visible Global Information Security (GIS) team where you will gain an in-depth understanding of the business partner's requirements for the applications/systems.
These requirements will then be used to make you determine and recommend the technical and operational feasibility of the solutions in the crypto space.
You will be required to maintain and enhance hosted crypto solutions like key management, payment, and general purpose HSMs which are integrated with end user applications so that they are compliant to the banks, as well as industry standards of key security.
You would work to develop prototypes of the system design and work with database, operations, technical support, and other various technocrats throughout the proof of concept and implementation cycle.
You will use your knowledge and abilities as technical resource to provide your expertise to the team(s).
You would also be responsible for administering and managing cryptographic keys, including key life cycle management, centrally manage keys with granular key management and proper access controls per our security standards and policy guidance.
Required experience:
Implement Best practices per the Oasis KMIP 2 standards, EMVCo, Global Platform, Multos, ANSI, FIPS140-2, NIST SP 800-57, PCI DSS and GDPR. Crypto compliances per industry standards including Data classification, policies, and data standards, Content filtering.
Must have hands on experience with Windows/ Linux plateform as you would being working on OpenShift and other Ansible solutions.
RESTful services, cloud native applications, PKCS#11, JCE, .NET, MCCAPI, MS CNG
Hands on experience with scalable systems using Kubernetes and OpenShift or Container orchestration technologies.
Ability to implement REST API consoles example Postman, Insomnia.
Full-stack monitoring using log ingress solutions with Splunk and SNMP v3.0
Data security platform engineering
Agile methodologies especially kanban for productivity and efficiency.
Configuration, patching and lifecycle management of cryptographic devices.
Strategize cloud migration and implementation of cloud HSM and cloud KMS using AKV, AWS, Google Cloud Platform etc...
Skills
pki, Thales, security, CipherTrust, Linux, Automation
Top Skills Details
pki,Thales,security
Additional Skills & Qualifications
Desired (Good to have) experience:
HSM and key Management products - Thales payShield, SafeNet HSM, Azure Key Vault (AKV), AWS KMS.
Key life cycle management and policy enforcement across environments.
Understand and implement enterprise cryptography standards per industry. Specialize in crypto products like Thales CipherTrust Manager, Hardware Security Modules and Payshield 10x.
Work closely with stakeholders to define crypto requirement for KMS and HSM needs.
Database encryption with Microsoft SQL TDE, Oracle TDE with PKCS11 and KMIP compliant products.
Experience Level
Intermediate Level
Job Type & Location
This is a Contract position based out of Addison, TX.
Pay and Benefits
The pay range for this position is $65.00 - $75.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully onsite position in Addison,TX.
Application Deadline
This position is anticipated to close on Jun 4, 2026.

About TEKsystems

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

San Francisco Fair Chance Ordinance: Pursuant to the San Francisco Fair Chance Ordinance, for all positions located in the city and county of San Francisco, we will consider for employment qualified applicants with arrest and conviction records.

Massachusetts Lie Detector: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Use of Artificial Intelligence (AI): We may use Artificial Intelligence (AI) to support parts of our hiring process, including sourcing, screening, and evaluating candidates. AI helps assess applications and qualifications, but final decisions are made by our hiring team. By applying, you acknowledge and agree that your application may be reviewed using AI tools.