At a Glance
- Tasks: Lead the design and evolution of enterprise PKI capabilities in a hybrid environment.
- Company: Join a respected global organisation with a focus on innovation and security.
- Benefits: Competitive package, hybrid work model, and opportunities for professional growth.
- Other info: Work in a dynamic environment with a focus on modernisation and transformation initiatives.
- Why this job: Make a significant impact by shaping the future of trust services and cryptographic security.
- Qualifications: Extensive PKI experience and strong stakeholder management skills required.
The predicted salary is between 70000 - 90000 £ per year.
We’re partnering with a highly respected global organisation seeking an experienced Enterprise PKI Specialist to lead the design, delivery, and evolution of its Public Key Infrastructure (PKI) capabilities. This is a rare opportunity for a senior PKI professional to take ownership of a large-scale enterprise PKI environment, influencing strategy, architecture, governance, and operational delivery across a complex technology estate spanning on‑premises and cloud platforms.
The Opportunity
As the organisation’s PKI Subject Matter Expert, you will be responsible for defining and implementing enterprise PKI architecture, establishing best practices for machine identity management, and ensuring the long‑term resilience, security, and scalability of cryptographic services. You will work closely with security, infrastructure, cloud, engineering, and architecture teams, providing technical leadership on all PKI‑related initiatives and helping shape the future direction of the organisation’s trust services.
Key Responsibilities
- Design and deliver enterprise‑grade PKI architecture and operational frameworks
- Develop Root CA, Intermediate CA, and Issuing CA hierarchies
- Define certificate policies, standards, trust models, and governance controls
- Lead PKI modernisation, migration, and transformation initiatives
- Design highly available and resilient PKI services
- Oversee HSM integration, key management, and cryptographic controls
- Establish automated certificate lifecycle management processes
- Develop enterprise machine identity management capabilities
- Define certificate discovery, monitoring, reporting, and inventory standards
- Provide expert guidance to engineering, cloud, infrastructure, and security teams
- Support audit, compliance, and regulatory requirements
- Act as the organisation’s senior PKI authority and trusted advisor
What We’re Looking For
- Extensive experience designing and implementing enterprise PKI environments
- Strong expertise in Root CA, Intermediate CA, and Issuing CA architecture
- Deep understanding of X.509 certificates, PKI trust models, certificate lifecycle management, CRLs, OCSP, and certificate validation
- Experience operating HSM‑backed PKI environments
- Proven track record delivering PKI transformation or modernisation programmes
- Strong stakeholder management and communication skills
- Ability to translate complex technical concepts into practical business recommendations
- Experience with Venafi, Keyfactor, DigiCert Trust Lifecycle Manager, Sectigo, EJBCA, HashiCorp Vault, or similar platforms
- Microsoft AD CS architecture, migration, and transformation projects
- AWS, Azure, Kubernetes, and hybrid cloud environments
- Experience within highly regulated or enterprise‑scale environments
- Relevant security, architecture, cloud, or cryptography certifications
Enterprise PKI Architect employer: Levy Global
Join a prestigious global organisation that values innovation and expertise, offering a dynamic hybrid work environment in London. As an Enterprise PKI Architect, you will not only lead critical projects but also benefit from a culture that prioritises professional growth, collaboration, and cutting-edge technology. With competitive compensation and a commitment to employee development, this role presents a unique opportunity to shape the future of trust services within a complex and evolving landscape.
