Identity, PKI & Access Engineer

Job Summary

Required Qualifications

• Demonstrated senior-level experience implementing and supporting enterprise identity, PKI, certificate management, SSO, federation, or secrets management capabilities
• Hands-on experience with Entra ID, Keycloak, Active Directory, LDAP/LDAPS, OIDC, OAuth 2.0, SAML, PKI, certificate authorities, cert-manager, or equivalent identity platforms
• Strong practical knowledge of certificate lifecycle management, trust chains, mTLS, service identities, access control, token-based authentication, secrets rotation, and identity troubleshooting
• Experience supporting classified, TS/SCI, multi-enclave, internet-connected, or air-gapped environments
• Ability to coordinate technical dependencies across cybersecurity, application, platform, network, UC, crypto, cloud, and operations teams
• Experience supporting RMF processes, ATO documentation, STIG compliance, security controls, or equivalent cybersecurity compliance activities for identity or platform services
• Ability to produce clear technical documentation, diagrams, implementation guides, test procedures, certificate inventories, and operational support materials

Additional Requirements

• Must be a U.S. Citizen
• Active Top Secret/SCI clearance is required