Manage the complete lifecycle of PKI/SSL certificates, including processing requests, renewals, and revocations for enterprise infrastructure. Provide technical support to stakeholders and monitor security compliance through CRL and transparency log reviews.
GovCIO is seeking an experienced Information Systems Engineer to support critical certificate authority infrastructure. This role involves managing large enterprise level certificates while navigating upcoming industry changes that will significantly reduce certificate validity periods and increase renewal frequency. This position will be within United States and will be fully remote.
ResponsibilitiesCertificate Lifecycle Management
- Review, approve, or reject PKI/SSL certificate requests on a daily basis
- Manage complete certificate lifecycle including CSR processing, enrollment, renewal, replacement, and revocation
- Support court Points of Contact (POCs) throughout the certificate management process
- Coordinate with internal and external Certificate Authorities for certificate issuance
Technical Support & Troubleshooting
- Provide technical assistance to courts experiencing PKI/SSL certificate issues
- Diagnose and resolve certificate-related problems across enterprise websites and resources
- Escalate complex issues to PKI/SSL vendors when necessary
- Document troubleshooting procedures and maintain knowledge base
Security Monitoring & Compliance
- Conduct daily reviews of Certificate Revocation Lists (CRL) for unauthorized certificates
- Monitor Certificate Transparency logs to validate certificate authenticity
- Identify and escalate security discrepancies or anomalies
- Ensure compliance with evolving industry standards and enterprise security policies
Process Improvement & Automation
- Prepare for implementation of Certificate Lifecycle Management (CLM) tool in 2026
- Adapt processes to accommodate shortened certificate validity periods:
- Develop strategies to manage increased renewal frequency efficiently
QualificationsBachelor's degree in Computer Science, Information Security, or related field with 8+ years (or commensurate experience)
Required Skills and Experience
- 3+ years of experience with PKI/SSL certificate management
- Strong understanding of X.509 certificates, Certificate Authorities, and PKI infrastructure
- Experience with certificate lifecycle management tools and processes
- Knowledge of SSL/TLS protocols and implementation
Security & Compliance
- Understanding of security frameworks and compliance requirements
- Experience with Certificate Revocation Lists (CRL) and Certificate Transparency logs
- Familiarity with government security standards and practices
- Knowledge of current and emerging PKI industry standards
Communication & Support
- Excellent customer service and communication skills
- Ability to provide technical support to non-technical users
- Strong documentation and training capabilities
- Experience working with multiple stakeholders across different organizational levels
- On-call support may be required for critical certificate issues
Clearance Required: Must be able to attain and maintain an AOUSC Public Trust
Preferred Skills and Experience
- Security+ or other relevant security certifications
- Experience with government systems
- Knowledge of certificate automation tools and scripting
- Familiarity with large enterprise environments
- Previous experience managing large-scale certificate deployments
Posted Salary RangeUSD $125,000.00 - USD $150,000.00 /Yr.