Home › Companies › Global Sas Icims Com › PKI Engineer
PKI Engineer
Global Sas Icims Com · Pune, UNAVAILABLE, IN · Active · iCIMS
Job facts
| Field | Value |
|---|---|
| Company | Global Sas Icims Com |
| Title | PKI Engineer |
| Normalized title | - |
| Department / team | Information Technology |
| Location | UNAVAILABLE, IN, United States |
| Work model | - |
| Employment type | OTHER |
| Salary | - |
| Status | active |
| ATS provider | iCIMS |
| Posted / first seen | 2026-05-18 / 2026-05-31 |
| Changed / last seen | 2026-06-01 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Global Sas Icims Com. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through iCIMS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in UNAVAILABLE. | Open |
| Department jobs | Active postings in Information Technology. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Global Sas Icims Com |
| Source | 58a4a327-e97f-4481-94e5-fd4c2e85ced4 |
| ATS provider | iCIMS |
Description
Job Description
We’re looking for an experienced PKI Engineer who is responsible for the engineering, operation, and continuous improvement of SAS’s Public Key Infrastructure (PKI) services . You will be responsible for the day-to-day reliability, security, and automation of certificate lifecycle services that support internal and external platforms, applications, devices, and integrations.
This position works closely with Identity, Infrastructure, Operations, Application, and Hosting teams to ensure secure machine identity, encryption, and trust across on-premises and cloud environments, while operating within established enterprise architectures and security standards.
Primary Responsibilities
Engineer, operate, and maintain ownership and usage of public, trusted certificate services.
Engineer, operate, and maintain private enterprise PKI services , including Issuing CAs, certificate templates, enrollment services, CRLs, and OCSP responders
Perform certificate lifecycle management activities: issuance, renewal, revocation, expiration monitoring, and troubleshooting across both public and private services.
Support certificate-based authentication for users , servers, applications, APIs, services, and devices
Identify & Educate the stakeholders with appropriate certificate requirements
Ensure high availability, backup, and recovery for PKI components.
Implement and maintain certificate automation using approved tools, platforms and common standards (e.g., ServiceNow, DigiCert, ACME)
Develop and maintain automation standards regarding integrations to reduce manual certificate operations
Partner with DevOps and Platform teams to integrate PKI into CI/CD pipelines and infrastructure workflows
Provide consistent direction and drive accountability to align with the SAS PKI program.
Apply approved PKI security standards , CA hardening standards, and access controls
Support compliance with SAS security standards, NIST guidance, applicable regulatory requirements, and evolving standards (post-quantum crypto – PQC)
Participate in audits, risk reviews, and incident response activities related to PKI services
Assist with certificate-related security investigations and root cause analysis.
Act as a PKI subject matter contributor for internal teams consuming certificate services
Provide Tier II / Tier III support for PKI related issues
Create and maintain operational documentation, scripts, runbooks, and procedures
Participate in on‑call rotation for PKI services (as required)
Requirements
(Explain the technical areas/skills required for hiring)
Essential
You’re curious, passionate, authentic, and accountable. These are our values and influence everything we do.
5+ years of experience in PKI, security engineering, or infrastructure security.
Handson experience with Microsoft Active Directory Certificate Services (AD CS), step-ca, Venafi, Key factor, DigiCert.
Working knowledge of X.509 certificates, TLS/SSL, RSA/ECC, CRLs, OCSP.
Experience administering Windows & Linux Servers.
Scripting experience (shell/bash, Python, PowerShell).
Ability to work with regular overlaps into EMEA business hours to support cross-region collaboration and knowledge transfer.
Demonstrated ability to develop others through mentoring, training, and documentation; experience enabling analyst or operations teams to support engineering outcomes.
Additional
Ability to prioritize and deliver multiple initiatives simultaneously.
Strong customer service mindset with a focus on business outcomes.
Proven ability to lead technical discussions and stakeholder meetings.
Strong analytical & problem-solving skills.
Preferences
Experience with Certificate Management Platforms (Venafi, Key factor, DigiCert)
Exposure to cloud PKI integrations (Azure, AWS, or GCP)
Familiarity with automation, DevOps, or CI/CD environments
Security or infrastructure certifications (e.g., Security+, vendor PKI training)
Experience with technical document creation.
Mandatory Technical Skills
PKI Engineering & Operations
Total Years of Relevant Experience
5+ years of experience in PKI, Security Engineering, or Infrastructure Security
Education Preference
Bachelor's / master’s degree in computer science, Engineering, or a related quantitative field
Equivalent combination of related education, training and experience may be considered in place of the above qualifications.
Full job record
| Job ID | 6f4b1c8ba8b8eb11d631dfd6ee2bf477fe002c98 |
| Org ID | 6f1e4f32-f254-4f53-8063-eacfd4acc83b |
| Source ID | 58a4a327-e97f-4481-94e5-fd4c2e85ced4 |
| Board ID | 58a4a327-e97f-4481-94e5-fd4c2e85ced4 |
| Provider | icims |
| Provider Job Key | 42046 |
| Title | PKI Engineer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Pune, UNAVAILABLE, IN |
| Department | Information Technology |
| Team | — |
| Employment Type | OTHER |
| Workplace Type | — |
| Remote Policy | — |
| Country | United States |
| Region | IN |
| City | UNAVAILABLE |
| Salary Raw | Job Description We’re looking for an experienced PKI Engineer who is responsible for the engineering, operation, and continuous improvement of SAS’s Public Key Infrastructure (PKI) services . You will be responsible for the day-to-day reliability, security, and automation of certificate lifecycle services that support internal and external platforms, applications, devices, and integrations. This position works closely with Identity, Infrastructure, Operations, Application, and Hosting teams to ensure secure machine identity, encryption, and trust across on-premises and cloud environments, while operating within established enterprise architectures and security standards. Primary Responsibilities Engineer, operate, and maintain ownership and usage of public, trusted certificate services. Engineer, operate, and maintain private enterprise PKI services , including Issuing CAs, certificate templates, enrollment services, CRLs, and OCSP responders Perform certificate lifecycle management activities: issuance, renewal, revocation, expiration monitoring, and troubleshooting across both public and private services. Support certificate-based authentication for users , servers, applications, APIs, services, and devices Identify & Educate the stakeholders with appropriate certificate requirements Ensure high availability, backup, and recovery for PKI components. Implement and maintain certificate automation using approved tools, platforms and common standards (e.g., ServiceNow, DigiCert, ACME) Develop and maintain automation standards regarding integrations to reduce manual certificate operations Partner with DevOps and Platform teams to integrate PKI into CI/CD pipelines and infrastructure workflows Provide consistent direction and drive accountability to align with the SAS PKI program. Apply approved PKI security standards , CA hardening standards, and access controls Support compliance with SAS security standards, NIST guidance, applicable regulatory requirements, and evolving standards (post-quantum crypto – PQC) Participate in audits, risk reviews, and incident response activities related to PKI services Assist with certificate-related security investigations and root cause analysis. Act as a PKI subject matter contributor for internal teams consuming certificate services Provide Tier II / Tier III support for PKI related issues Create and maintain operational documentation, scripts, runbooks, and procedures Participate in on‑call rotation for PKI services (as required) Requirements (Explain the technical areas/skills required for hiring) Essential You’re curious, passionate, authentic, and accountable. These are our values and influence everything we do. 5+ years of experience in PKI, security engineering, or infrastructure security. Handson experience with Microsoft Active Directory Certificate Services (AD CS), step-ca, Venafi, Key factor, DigiCert. Working knowledge of X.509 certificates, TLS/SSL, RSA/ECC, CRLs, OCSP. Experience administering Windows & Linux Servers. Scripting experience (shell/bash, Python, PowerShell). Ability to work with regular overlaps into EMEA business hours to support cross-region collaboration and knowledge transfer. Demonstrated ability to develop others through mentoring, training, and documentation; experience enabling analyst or operations teams to support engineering outcomes. Additional Ability to prioritize and deliver multiple initiatives simultaneously. Strong customer service mindset with a focus on business outcomes. Proven ability to lead technical discussions and stakeholder meetings. Strong analytical & problem-solving skills. Preferences Experience with Certificate Management Platforms (Venafi, Key factor, DigiCert) Exposure to cloud PKI integrations (Azure, AWS, or GCP) Familiarity with automation, DevOps, or CI/CD environments Security or infrastructure certifications (e.g., Security+, vendor PKI training) Experience with technical document creation. Mandatory Technical Skills PKI Engineering & Operations Total Years of Relevant Experience 5+ years of experience in PKI, Security Engineering, or Infrastructure Security Education Preference Bachelor's / master’s degree in computer science, Engineering, or a related quantitative field Equivalent combination of related education, training and experience may be considered in place of the above qualifications. |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | day |
| Source URL | https://global-sas.icims.com/jobs/42046/pki-engineer/job |
| Apply URL | https://global-sas.icims.com/jobs/42046/pki-engineer/job |
| First Seen At | 2026-05-31 18:40:58Z |
| Last Seen At | 2026-06-06 20:21:57Z |
| Last Checked At | 2026-06-06 20:21:57Z |
| Last Changed At | 2026-06-01 13:21:07Z |
| Inactive At | — |
| Source Posted At | 2026-05-18 04:00:00Z |
| Source Updated At | 2026-05-18 12:08:14Z |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=icims/board=global-sas.icims.com/date=2026-06-06/2026-06-06T20-21-53-248Z-b7b0b60d6f0c7642e31a0f715ef95f1d9240118f3350911af35936f97f77ea43.json |
Event Fields
{
"content_hash": "8bd2e377c70abd679756abcc9f2f83801df8937cf286c6713322e1bfe5b9fb6f",
"source_hash": "fd4037bbcd3b8ea2da4098cca5e356d903f617f3a52ae9182f1a79b6941edb08",
"last_changed_at": "2026-06-01T13:21:07.745Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Pune, UNAVAILABLE, IN",
"city": "UNAVAILABLE",
"region": "IN",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T20:21:57.020Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Pune, UNAVAILABLE, IN",
"city": "UNAVAILABLE",
"region": "IN",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": "day",
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"json_ld": {
"url": "https://global-sas.icims.com/jobs/42046/pki-engineer/job",
"@type": "JobPosting",
"title": "PKI Engineer",
"@context": "http://schema.org",
"datePosted": "2026-05-18T04:00:00.000Z",
"description": "<h2></h2>\n<h3>Job Description</h3>\n<p>We’re looking for an experienced PKI Engineer who is responsible for the <strong>engineering, operation, and continuous improvement of SAS’s Public Key Infrastructure (PKI) services</strong>. You will be responsible for the <strong>day-to-day reliability, security, and automation of certificate lifecycle services</strong> that support internal and external platforms, applications, devices, and integrations. </p>\n<p>This position works closely with Identity, Infrastructure, Operations, Application, and Hosting teams to ensure <strong>secure machine identity, encryption, and trust</strong> across on-premises and cloud environments, while operating within established enterprise architectures and security standards.</p>\n<p> </p>\n<h3>Primary Responsibilities</h3>\n<ul>\n <li>Engineer, operate, and maintain ownership and usage of <strong>public, trusted certificate services. </strong> </li>\n</ul>\n<ul>\n <li>Engineer, operate, and maintain <strong>private</strong> <strong>enterprise PKI services</strong>, including Issuing CAs, certificate templates, enrollment services, CRLs, and OCSP responders </li>\n</ul>\n<ul>\n <li>Perform <strong>certificate lifecycle management</strong> activities: issuance, renewal, revocation, expiration monitoring, and troubleshooting across both public and private services. </li>\n</ul>\n<ul>\n <li>Support certificate-based authentication for <strong>users</strong>, <strong>servers, applications, APIs, services, and devices</strong> </li>\n</ul>\n<ul>\n <li>Identify & <strong>Educate</strong> the stakeholders with appropriate certificate requirements </li>\n</ul>\n<ul>\n <li>Ensure high availability, backup, and recovery for PKI components. </li>\n <li>Implement and maintain <strong>certificate automation</strong> using approved tools, platforms and common standards (e.g., ServiceNow, DigiCert, ACME) </li>\n <li>Develop and maintain automation standards regarding <strong>integrations</strong> to reduce manual certificate operations </li>\n <li>Partner with DevOps and Platform teams to integrate PKI into <strong>CI/CD pipelines and infrastructure workflows</strong> </li>\n <li>Provide consistent direction and drive accountability to align with the SAS PKI program. </li>\n <li>Apply approved <strong>PKI security standards</strong>, CA hardening standards, and access controls </li>\n <li>Support compliance with <strong>SAS security standards, NIST guidance, applicable regulatory requirements, and evolving standards (post-quantum crypto – PQC)</strong> </li>\n <li>Participate in audits, risk reviews, and incident response activities related to PKI services </li>\n <li>Assist with certificate-related security investigations and root cause analysis. </li>\n <li>Act as a <strong>PKI subject matter contributor</strong> for internal teams consuming certificate services </li>\n <li>Provide Tier II / Tier III support for PKI related issues </li>\n <li>Create and maintain <strong>operational documentation, scripts, runbooks, and procedures</strong> </li>\n <li>Participate in on‑call rotation for PKI services (as required) </li>\n</ul>\n<p> </p>\n<p> </p>\n<h3>Requirements</h3>\n<p><em>(Explain the technical areas/skills required for hiring)</em></p>\n<h4>Essential</h4>\n<ul>\n <li>You’re curious, passionate, authentic, and accountable. These are our values and influence everything we do.</li>\n <li>5+ years of experience in <strong>PKI, security engineering, or infrastructure security.</strong> </li>\n</ul>\n<ul>\n <li>Handson experience with <strong>Microsoft Active Directory Certificate Services (AD CS), step-ca, Venafi, Key factor, DigiCert. </strong> </li>\n</ul>\n<ul>\n <li>Working knowledge of <strong>X.509 certificates, TLS/SSL, RSA/ECC, CRLs, OCSP.</strong> </li>\n</ul>\n<ul>\n <li>Experience administering <strong>Windows & Linux Servers.</strong></li>\n</ul>\n<ul>\n <li>Scripting experience (shell/bash, Python, PowerShell). </li>\n</ul>\n<ul>\n <li>Ability to work with regular overlaps into <strong>EMEA business hours</strong> to support cross-region collaboration and knowledge transfer.</li>\n</ul>\n<p> </p>\n<ul>\n <li>Demonstrated ability to develop others through mentoring, training, and documentation; experience enabling analyst or operations teams to support engineering outcomes. </li>\n</ul>\n<p> </p>\n<h4>Additional</h4>\n<ul>\n <li>Ability to prioritize and deliver multiple initiatives simultaneously.</li>\n <li>Strong customer service mindset with a focus on business outcomes.</li>\n <li>Proven ability to lead technical discussions and stakeholder meetings.</li>\n <li>Strong analytical & problem-solving skills.</li>\n</ul>\n<h4>Preferences</h4>\n<ul>\n <li>Experience with <strong>Certificate Management Platforms</strong> (Venafi, Key factor, DigiCert) </li>\n <li>Exposure to cloud PKI integrations (Azure, AWS, or GCP) </li>\n <li>Familiarity with automation, DevOps, or CI/CD environments </li>\n <li>Security or infrastructure certifications (e.g., Security+, vendor PKI training) </li>\n <li>Experience with technical document creation. </li>\n</ul>\n<p> </p>\n<h3>Mandatory Technical Skills</h3>\n<ul>\n <li>PKI Engineering & Operations</li>\n</ul>\n<p> </p>\n<h3>Total Years of Relevant Experience</h3>\n<ul>\n <li>5+ years of experience in <strong>PKI, Security Engineering, or Infrastructure Security</strong> </li>\n</ul>\n<p> </p>\n<h3>Education Preference</h3>\n<p>Bachelor's / master’s degree in computer science, Engineering, or a related quantitative field</p>\n<p>Equivalent combination of related education, training and experience may be considered in place of the above qualifications. </p>\n<p> </p>\n<p><strong> </strong></p>",
"directApply": true,
"jobLocation": [
{
"@type": "Place",
"address": {
"@type": "PostalAddress",
"postalCode": "UNAVAILABLE",
"addressRegion": "UNAVAILABLE",
"streetAddress": "UNAVAILABLE",
"addressCountry": "IN",
"addressLocality": "Pune",
"postOfficeBoxNumber": "UNAVAILABLE"
}
}
],
"validThrough": "2027-05-18T04:00:00.000Z",
"employmentType": "OTHER",
"hiringOrganization": {
"name": "SAS",
"@type": "Organization",
"sameAs": "www.sas.com"
},
"occupationalCategory": "Information Technology"
},
"detail_meta": {
"url": "https://global-sas.icims.com/jobs/42046/pki-engineer/job?in_iframe=1",
"http_status": 200,
"content_type": "text/html;charset=UTF-8",
"response_bytes": 63507,
"compact_response_bytes": 7379,
"original_response_bytes": 63507
},
"sitemap_job": {
"id": "42046",
"url": "https://global-sas.icims.com/jobs/42046/pki-engineer/job",
"slug": "pki-engineer",
"lastmod": "2026-05-18T08:08:14-04:00"
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/6f4b1c8ba8b8eb11d631dfd6ee2bf477fe002c98?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/6f1e4f32-f254-4f53-8063-eacfd4acc83bJSONGET https://api.bluedoor.sh/job-postings/v1/sources/58a4a327-e97f-4481-94e5-fd4c2e85ced4JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/6f4b1c8ba8b8eb11d631dfd6ee2bf477fe002c98/eventsJSON