Multi-Vendor PKI & Certificate Lifecycle Management Consultant

Role Overview

• Conduct a comprehensive discovery and assessment of the client's current PKI environment across on-premises and cloud infrastructure
• Evaluate existing CLM tooling and provide vendor-neutral recommendations aligned to the client's security and operational requirements
• Assess HSM platform configurations and identify gaps or opportunities for improvement
• Develop findings and deliver clear, actionable documentation for technical and executive stakeholders
• Engage with client teams on-site as needed for key meetings and workshops

Requirements

• 10+ years of experience in PKI architecture and delivery across regulated industries
• Hands-on experience with at least three of the following: Venafi, Keyfactor, EJBCA, AppViewX, and native cloud PKI services (AWS, Azure, GCP)
• Hands-on experience with HSM platforms including Thales Luna and/or Entrust nShield
• Demonstrated track record of conducting objective, multi-vendor PKI evaluations including engagements where recommendations were vendor-neutral or favored non-incumbent platforms
• Experience with public CA strategy across DigiCert, Sectigo, Entrust, and ACME-based alternatives
• Strong documentation and communication skills with the ability to present findings to both technical and non-technical audiences.

Tech Stack

• AWS
• Azure
• Cloud
• Google Cloud Platform