remote

Senior PKI Standards & Compliance Engineer

PKI Standards & Compliance Engineer

Senior PKI Standards & Compliance Engineer position — see original posting for full details.

About the role

Who we are

DigiCert is a global leader in intelligent trust. We protect the digital world by ensuring the security, privacy, and authenticity of every interaction. Our AI-powered DigiCert ONE platform unifies PKI, DNS, and certificate lifecycle management, to secure infrastructure, software, devices, messages, AI content and agents. Learn why more than 100,000 organizations, including 90% of the Fortune 500, choose DigiCert to stop today’s threats and prepare for a quantum-safe future at www.digicert.com

Job summary

DigiCert is seeking a Senior PKI Standards & Compliance Engineer to join our team. This role sits at the intersection of deep technical expertise and regulatory compliance, requiring someone who can both implement and critically analyze complex PKI systems while actively shaping the industry standards that govern them. You will represent DigiCert in public standards bodies, contribute to policy development, and serve as a trusted compliance authority internally.

What you will do

Conduct rigorous compliance analysis of certificate issuance practices against applicable standards, including the CA/Browser Forum Baseline Requirements, Extended Validation Guidelines, S/MIME Baseline Requirements, and related IETF and ISO frameworks.
Represent DigiCert in public standards forums including the CA/Browser Forum, IETF, and other relevant working groups — drafting ballots, participating in debates, and building consensus with industry peers.
Evaluate proposed changes to industry standards for technical feasibility and compliance impact and translate findings into actionable guidance for engineering and operations teams.
Author and maintain internal compliance documentation including CPSes (Certification Practice Statements), Certificate Policies, and related policy artifacts.
Perform root cause analysis on compliance incidents and drive remediation efforts.
Monitor the evolving regulatory and standards landscape (including post-quantum cryptography transitions, certificate lifetimes, and automation initiatives such as ACME) and assess implications for DigiCert's products and operations.
Collaborate cross-functionally with product, legal, security, and engineering teams to embed compliance requirements into the software development lifecycle.
Serve as a subject matter expert and internal resource on PKI architecture, certificate profiles, cryptographic algorithms, and trust store requirements.

What you will have

5+ years of experience in PKI, digital certificates, or a closely related field.
Deep familiarity with X.509 certificate standards, RFC 5280, and CA/Browser Forum requirements.
Demonstrated ability to analyze complex technical and policy documents and produce clear, well-reasoned compliance assessments.
Experience participating in or following public standards development processes (CA/Browser Forum

About the role

Who we are

Job summary

What you will do

Conduct rigorous compliance analysis of certificate issuance practices against applicable standards, including the CA/Browser Forum Baseline Requirements, Extended Validation Guidelines, S/MIME Baseline Requirements, and related IETF and ISO frameworks.
Represent DigiCert in public standards forums including the CA/Browser Forum, IETF, and other relevant working groups — drafting ballots, participating in debates, and building consensus with industry peers.
Evaluate proposed changes to industry standards for technical feasibility and compliance impact and translate findings into actionable guidance for engineering and operations teams.
Author and maintain internal compliance documentation including CPSes (Certification Practice Statements), Certificate Policies, and related policy artifacts.
Perform root cause analysis on compliance incidents and drive remediation efforts.
Monitor the evolving regulatory and standards landscape (including post-quantum cryptography transitions, certificate lifetimes, and automation initiatives such as ACME) and assess implications for DigiCert's products and operations.
Collaborate cross-functionally with product, legal, security, and engineering teams to embed compliance requirements into the software development lifecycle.
Serve as a subject matter expert and internal resource on PKI architecture, certificate profiles, cryptographic algorithms, and trust store requirements.

What you will have

5+ years of experience in PKI, digital certificates, or a closely related field.
Deep familiarity with X.509 certificate standards, RFC 5280, and CA/Browser Forum requirements.
Demonstrated ability to analyze complex technical and policy documents and produce clear, well-reasoned compliance assessments.
Experience participating in or following public standards development processes (CA/Browser Forum