Senior PKI Standards & Compliance Engineer

About The Position

Requirements

• 5+ years of experience in PKI, digital certificates, or a closely related field.
• Deep familiarity with X.509 certificate standards, RFC 5280, and CA/Browser Forum requirements.
• Demonstrated ability to analyze complex technical and policy documents and produce clear, well-reasoned compliance assessments.
• Experience participating in or following public standards development processes (CA/Browser Forum, IETF, etc.).
• Strong written and verbal communication skills, including the ability to represent a company position persuasively in public forums.
• Proficiency with certificate tooling, ASN.1, and common PKI debugging and analysis methods.

Nice To Haves

• Prior experience drafting CA/Browser Forum ballots or IETF Internet-Drafts.
• Experience with WebTrust or ETSI audit processes.
• Understanding of post-quantum cryptography standards and migration considerations.
• Background in software engineering or systems architecture in a CA or PKI-adjacent environment.

Responsibilities

• Conduct rigorous compliance analysis of certificate issuance practices against applicable standards, including the CA/Browser Forum Baseline Requirements, Extended Validation Guidelines, S/MIME Baseline Requirements, and related IETF and ISO frameworks.
• Represent DigiCert in public standards forums including the CA/Browser Forum, IETF, and other relevant working groups — drafting ballots, participating in debates, and building consensus with industry peers.
• Evaluate proposed changes to industry standards for technical feasibility and compliance impact and translate findings into actionable guidance for engineering and operations teams.
• Author and maintain internal compliance documentation including CPSes (Certification Practice Statements), Certificate Policies, and related policy artifacts.
• Perform root cause analysis on compliance incidents and drive remediation efforts.
• Monitor the evolving regulatory and standards landscape (including post-quantum cryptography transitions, certificate lifetimes, and automation initiatives such as ACME) and assess implications for DigiCert's products and operations.
• Collaborate cross-functionally with product, legal, security, and engineering teams to embed compliance requirements into the software development lifecycle.
• Serve as a subject matter expert and internal resource on PKI architecture, certificate profiles, cryptographic algorithms, and trust store requirements.

Benefits

• Competitive compensation and comprehensive health, dental, and vision coverage
• Retirement savings programs with company matching (401(k) or RRSP)
• Generous paid time off, including holidays, and vacation
• Paid parental leave and family support benefits
• Life and disability coverage
• Flexible spending and health savings options (where applicable)
• Health and wellness support, including gym reimbursement and wellness programs
• Employee Assistance Program with 24/7confidential support for employees and families
• Education assistance and professional development opportunities
• Access to LinkedIn Learning and continuous learning resources
• Employee referral bonus program and additional company perks and discounts
• Internal rewards and recognition platform (Motivosity) to celebrate and acknowledge project wins, milestone achievements, and the outstanding contributions of our colleagues
• Business travel insurance and global employee support programs