Senior Manager, Enterprise Technology Engineer (Certificate Management)

TL;DR

Senior Manager, Enterprise Technology Engineer (Certificate Management): Building and evolving a critical authentication platform and transforming the identity infrastructure from traditional PKI to quantum-resistant solutions, ensuring enterprise-wide resilience. Focus on automating certificate management, enabling Zero Trust security, and driving future-proofing initiatives in cryptography.

Company

hirify.global delivers energy to the world, discovering, developing, and producing oil and gas in the nations where they operate.

What you will do

• Ensure secure and reliable PKI operations by maintaining and improving internal Certificate Authorities (CAs).
• Automate certificate management using Terraform, Ansible, and CI/CD pipelines for certificate issuance, renewal, and revocation.
• Enable Zero Trust and IAM security by integrating certificate-based authentication across VPNs, smart cards, SPIFFE/SPIRE, and workload identities.
• Optimize TLS & mTLS Implementations to secure web servers, service mesh environments (Istio, Linkerd), and machine-to-machine communications.
• Enhance security & compliance by aligning PKI operations with NIST, ISO 27001, SOC 2, GDPR, and PCI-DSS frameworks.
• Support multi-cloud & hybrid environments implementing certificate governance across Azure Key Vault, AWS ACM.

Requirements

• Bachelor’s degree or equivalent experience in technology, engineering, or a related field.
• Strong PKI expertise – X.509, TLS/SSL, OCSP, CRL, ADCS, and Entra ID Certificate Management.
• Knowledge of Zero Trust & IAM.
• Understanding of Infrastructure as Code (IaC) & Automation – Terraform, Ansible, CloudFormation, Kubernetes etc.
• Multi-cloud security knowledge – AWS ACM, Azure Key Vault etc.
• Expertise in solving TLS handshake issues and certificate clarity logs.

Nice to have

• Proven experience leading enterprise-grade certificate infrastructures, including X.509, ADCS, OCSP, CRLs.
• Strong ability to automate certificate lifecycle management using tools like Terraform, Ansible, and CI/CD pipelines.
• Forward-thinking approach to cryptography, with knowledge of post-quantum trends, hybrid certs, and evolving machine identity standards (e.g., SPIFFE/SPIRE).

Culture & Benefits

• Generous salary package including an annual bonus program and individual performance-based incentives.
• Additional EPF contributions totaling 15%.
• Excellent work-life balance & flexible working arrangements (hybrid 60/40 in-office).
• Collaborative environment that celebrates achievements, diversity, and culture.
• Ongoing career development and progression opportunities in a global organization.
• 12 weeks paid parental leave (4 weeks partner leave).