Senior PKI Standards & Compliance Engineer

Job summary

DigiCert is seeking a Senior PKI Standards & Compliance Engineer to join our team. This role sits at the intersection of deep technical expertise and regulatory compliance, requiring someone who can both implement and critically analyze complex PKI systems while actively shaping the industry standards that govern them. You will represent DigiCert in public standards bodies, contribute to policy development, and serve as a trusted compliance authority internally.

What you will do

• Conduct rigorous compliance analysis of certificate issuance practices against applicable standards, including the CA/Browser Forum Baseline Requirements, Extended Validation Guidelines, S/MIME Baseline Requirements, and related IETF and ISO frameworks.
• Represent DigiCert in public standards forums including the CA/Browser Forum, IETF, and other relevant working groups — drafting ballots, participating in debates, and building consensus with industry peers.
• Evaluate proposed changes to industry standards for technical feasibility and compliance impact and translate findings into actionable guidance for engineering and operations teams.
• Author and maintain internal compliance documentation including CPSes (Certification Practice Statements), Certificate Policies, and related policy artifacts.
• Perform root cause analysis on compliance incidents and drive remediation efforts.
• Monitor the evolving regulatory and standards landscape (including post-quantum cryptography transitions, certificate lifetimes, and automation initiatives such as ACME) and assess implications for DigiCert's products and operations.
• Collaborate cross-functionally with product, legal, security, and engineering teams to embed compliance requirements into the software development lifecycle.
• Serve as a subject matter expert and internal resource on PKI architecture, certificate profiles, cryptographic algorithms, and trust store requirements.

What you will have

• 5+ years of experience in PKI, digital certificates, or a closely related field.
• Deep familiarity with X.509 certificate standards, RFC 5280, and CA/Browser Forum requirements.
• Demonstrated ability to analyze complex technical and policy documents and produce clear, well-reasoned compliance assessments.
• Experience participating in or following public standards development processes (CA/Browser Forum, IETF, etc.).
• Strong written and verbal communication skills, including the ability to represent a company position persuasively in public forums.
• Proficiency with certificate tooling, ASN.1, and common PKI debugging and analysis methods.

Nice to have

• Prior experience drafting CA/Browser Forum ballots or IETF Internet-Drafts.
• Experience with WebTrust or ETSI audit processes.
• Understanding of post-quantum cryptography standards and migration considerations.
• Background in software engineering or systems architecture in a CA or PKI-adjacent environment.

Benefits

• Competitive compensation and comprehensive health, dental, and vision coverage
• Retirement savings programs with company matching (401(k) or RRSP)
• Generous paid time off, including holidays, and vacation
• Paid parental leave and family support benefits
• Life and disability coverage
• Flexible spending and health savings options (where applicable)
• Health and wellness support, including gym reimbursement and wellness programs
• Employee Assistance Program with 24/7confidential support for employees and families
• Education assistance and professional development opportunities
• Access to LinkedIn Learning and continuous learning resources
• Employee referral bonus program and additional company perks and discounts
• Internal rewards and recognition platform (Motivosity) to celebrate and acknowledge project wins, milestone achievements, and the outstanding contributions of our colleagues
• Business travel insurance and global employee support programs

DigiCert is an Equal Opportunity employer and is committed to diversity in its workforce. In compliance with applicable federal and state laws, DigiCert prohibits discrimination on the basis of race or ethnicity, religion, color, national origin, sex, age, sexual orientation, gender identity/expression, veteran’s status, status as a qualified person with a disability, or genetic information. Individuals from historically underrepresented groups, such as minorities, women, qualified person with disabilities, and protected veterans are strongly encouraged to apply.

#LI-KK1