Architect, Microsoft Identity & PKI
About The Position
The role of the Microsoft Identity Architect / PKI is to design and lead enterprise-scale identity and PKI modernization initiatives, ensuring secure and scalable certificate lifecycle management. This individual leverages expertise in Microsoft Entra, Hybrid Join, and KeyFactor technologies to architect and automate identity and cryptographic solutions across complex environments. The role also provides technical leadership in advancing PKI strategies, including HSM integration and Post-Quantum Cryptography readiness. The candidate must have hands-on experience with enterprise PKI modernization in large-scale environments. They should be proficient in working with KeyFactor and KeyFactor Command for certificate lifecycle automation. The role requires strong knowledge of Microsoft Entra and Hybrid Join capabilities within identity ecosystems. The candidate must have practical experience with HSMs (onprem), CA/RA processes, and CRL/OCSP operations. They should demonstrate awareness of PQC (PostQuantum Cryptography) and its impact on PKI modernization strategies.
Requirements
- Hands-on experience with enterprise PKI modernization in large-scale environments
- Proficient in working with KeyFactor and KeyFactor Command for certificate lifecycle automation
- Strong knowledge of Microsoft Entra and Hybrid Join capabilities within identity ecosystems
- Practical experience with HSMs (onprem), CA/RA processes, and CRL/OCSP operations
- Awareness of PQC (Post-Quantum Cryptography) and its impact on PKI modernization strategies
- Minimum of 2+ years of direct experience supporting or delivering enterprise PKI solutions
- Proven ability to work with KeyFactor technologies and certificate management automation at scale
- Strong expertise in Microsoft identity platforms, including Entra, Hybrid Join, Conditional Access, and passwordless authentication
- Demonstrated experience providing technical leadership and architecture guidance in client-facing delivery engagements
- Capable of contributing to modernization initiatives involving HSM analysis, KeyFactor migration, and PQC roadmap activities
- Reside in one of the following U.S. states to be able to commute into the office: DC, MD, VA, PA, DE, GA, TN, NC
- Authorized to work for ANY employer in the U.S. (unable to sponsor or take over sponsorship of an employment visa currently)
Responsibilities
- Design and lead enterprise-scale identity and PKI modernization initiatives
- Ensuring secure and scalable certificate lifecycle management
- Leverage expertise in Microsoft Entra, Hybrid Join, and KeyFactor technologies to architect and automate identity and cryptographic solutions across complex environments
- Provide technical leadership in advancing PKI strategies, including HSM integration and Post-Quantum Cryptography readiness
- Provide technical leadership and architecture guidance in client-facing delivery engagements
- Contribute to modernization initiatives involving HSM analysis, KeyFactor migration, and PQC roadmap activities
Benefits
- Discretionary bonuses
- Commissions
- Other incentive programs
- Comprehensive benefits package that includes medical
- Dental
- Vision
- 401(k)
- Paid time off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Career Level
Senior
Education Level
No Education Listed
