Senior Certificate Engineer (PKI / Active Directory)

Gainwell Technologies • $85K — $121K *

Wrangell, AK 99929In-Person

Information Technology

5 - 7 years of experience

Today

Be an Early Applicant

By clicking Apply, I agree with Ladders' Terms of Use and Privacy Policy

Job Overview by Ladders

Qualifications

Bachelor's degree in Computer Science, Information Technology, or equivalent experience
7+ years in enterprise PKI engineering and Active Directory administration
Strong experience with Active Directory Certificate Services (AD CS) and Windows Server environments
Experience with public certificate authorities like DigiCert, Entrust, and Sectigo
Proficient in scripting and automation, particularly PowerShell
Deep knowledge of X.509 certificates, TLS/SSL protocols, and cryptographic standards

Responsibilities

Design and maintain enterprise PKI solutions, including offline root CAs and certificate policies
Lead PKI modernization efforts for hybrid and cloud-integrated services
Implement and manage Active Directory Certificate Services (AD CS)
Oversee procurement, issuance, renewal, and revocation of public SSL/TLS certificates
Manage certificate lifecycle processes including issuance and renewal
Ensure compliance with security policies and conduct risk assessments
Provide Tier 3 escalation support and troubleshoot certificate-related issues

Benefits

Generous, flexible vacation policy
401(k) employer match
Comprehensive health benefits
Educational assistance
Opportunities for skill development through leadership and technical academies

Full Job Description

Summary

We are seeking a highly skilled Senior Certificate Engineer to design, implement, and manage enterprise Public Key Infrastructure (PKI) solutions. This role will focus on Active Directory Certificate Services (AD CS), public certificate authority integrations, and end-to-end certificate lifecycle management across hybrid environments.

The ideal candidate has deep expertise in Microsoft PKI architecture, certificate automation, and identity/security integration, along with experience working with public CAs (e.g., DigiCert, Entrust, Sectigo) in a large-scale enterprise environment.

Your role in our mission

PKI Architecture & Engineering

Design and maintain enterprise PKI solutions, including offline root CAs, issuing CAs, and certificate policies
Lead PKI modernization efforts, including hybrid and cloud-integrated certificate services
Architect solutions that support high availability, scalability, and security compliance

Active Directory Integration

Implement and manage Active Directory Certificate Services (AD CS)
Configure and maintain:

Certificate templates
Group Policy-based auto-enrollment
CRL distribution points (CDPs) and AIA locations

Integrate PKI with Active Directory, Azure AD, and hybrid identity environments

Public Certificate Authority Management

Manage enterprise relationships and integrations with external/public CAs
Oversee procurement, issuance, renewal, and revocation of public SSL/TLS certificates
Integrate public CA services into automation workflows and enterprise platforms

Certificate Lifecycle Management

Manage certificate lifecycle processes including:

Issuance
Renewal
Revocation
Expiration monitoring

Implement automation using tools such as:

PowerShell
ACME / EST / SCEP protocols
Certificate management platforms

Security & Compliance

Ensure PKI solutions meet enterprise security policies and regulatory requirements (e.g., NIST, CIS, HIPAA, PCI)
Conduct risk assessments related to certificate usage and cryptographic standards
Maintain secure key management practices, including HSM integration where applicable

Operations & Troubleshooting

Provide Tier 3 escalation support for PKI and certificate-related issues
Troubleshoot:

Authentication failures (TLS, smart card, etc.)
Certificate chain issues
Revocation and CRL distribution problems

Develop monitoring, alerting, and reporting for certificate health and usage

Automation & Innovation

Develop and maintain automation scripts and workflows for certificate deployment and management
Integrate PKI processes with:

ServiceNow
Azure services
DevOps pipelines

Drive adoption of modern certificate management solutions and practices

What we're looking for

Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience)
7+ years of experience in:

Enterprise PKI engineering
Active Directory administration

Strong experience with:

Active Directory Certificate Services (AD CS)
Windows Server environments
Public certificate authorities (DigiCert, Entrust, Sectigo, etc.)

Proficiency in scripting and automation (PowerShell preferred)
Deep understanding of:

X.509 certificates
TLS/SSL protocols
Cryptographic algorithms and standards

What you should expect in this role

Remote position (US continental only)
Opportunities to travel through your work (0-10%)
Video cameras must be used during all interviews, as well as during the initial week of orientation
The deadline to submit applications for this posting is 6/30/2026

The pay range for this position is $85,000.00 - $121,400.00 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors. Put your passion to work at Gainwell. You'll have the opportunity to grow your career in a company that values work flexibility, learning, and career development. All salaried, full-time candidates are eligible for our generous, flexible vacation policy, a 401(k) employer match, comprehensive health benefits, and educational assistance. We also have a variety of leadership and technical development academies to help build your skills and capabilities.

We believe nothing is impossible when you bring together people who care deeply about making healthcare work better for everyone. Build your career with Gainwell, an industry leader. You'll be joining a company where collaboration, innovation, and inclusion fuel our growth. Learn more about Gainwell at our company website and visit our Careers site for all available job role openings.

About Gainwell Technologies

Gainwell Technologies offerings including Medicaid Management Information Systems (MMIS), fiscal agent services, program integrity, care management, immunization registry, and eligibility services. With over 50 years of proven experience, Gainwell carries forward a reputation for technological innovation, service excellence, and unparalleled industry expertise in offering clients scalable and flexible health and human services solutions for their most complex challenges.

Gainwell Technologies Careers

There has never been a more opportune time to join Gainwell Technologies, a leader in providing cutting-edge technology solutions. As a hub of innovation and diversity, Gainwell Technologies offers a plethora of job opportunities aimed at enhancing the digital landscape.

Work You’ll Do

Join Gainwell Technologies' esteemed team to assist some of the most prominent organizations in mastering their technological advancements and digital transformations. At Gainwell Technologies, the focus is on leveraging a unique blend of technology, industry expertise, and digital innovation to lead the market. Professionals at Gainwell Technologies are positioned uniquely at the crossroads of technology and consulting, driving leadership and growth in various sectors through transformative solutions.

Gainwell Technologies Professional Growth and Opportunities

The team is dedicated to building a leading-edge environment that fosters professional growth and innovation. Gainwell Technologies is not just about addressing the current needs of the market but also about foreseeing and shaping the future of technology.

Innovative Work

At Gainwell Technologies, employees engage in groundbreaking work at the intersection of technology and practical application. The company is home to a large group of dedicated professionals who are committed to delivering robust solutions on trusted platforms.

Career Advancement

Embark on a career journey with Gainwell Technologies where the sky is the limit. The company supports ambitious professionals with comprehensive training, development programs, and diverse certification opportunities designed to future-proof careers in the technology sector.

Explore Job Opportunities and Culture

Gainwell Technologies is committed to creating a workplace culture that promotes diversity and inclusion, where every team member’s contribution is valued. Explore various job opportunities, from internships to full-time positions, and become part of a team that values innovation and leadership.

The Gainwell Technologies Commitment to Diversity and Professional Development

Gainwell Technologies recognizes the importance of diversity training and professional development in creating a thriving workplace. The company is dedicated to providing employees with the resources they need to succeed in their careers and contribute to the industry effectively.

Stay Connected with Gainwell Technologies Careers

Join the Team

Discover open positions that align with your skills and interests. Gainwell Technologies is on the lookout for passionate, curious, and creative professionals who are driven to find solutions and excel in their careers. SEARCH GAINWELL TECHNOLOGIES JOBS

Keep Up to Date

Stay informed with career tips, insider perspectives, and industry-leading insights you can immediately apply—all from the professionals who work at Gainwell Technologies.

READ CAREERS BLOG

Job Alert Emails

Customize your subscription to receive job alerts, the latest news, and insider tips tailored to your preferences. Explore the exciting and rewarding opportunities that await at Gainwell Technologies.

Learn more about Gainwell Technologies

Size

10,001 employees

Industry

Information Technology

* Ladders Estimates

Similar Jobs

Scientific Computing and Data Management SME
$90K — $130K *
ECS
Remote
Today
Site Reliability Engineer
$90K — $120K *
Tecsys
Remote
Reposted Yesterday
Senior Business Systems Analyst
$89K — $142K *
Blue Cross Blue Shield of North Carolina
Remote
Yesterday
System Architect - SME
$107K — $195K *
Leidos
Remote
Reposted Yesterday
Principal Platform Engineer
$96K — $207K *
Fifth Third Bancorp
Remote
Yesterday
Unified Communications Engineer
$90K — $120K *
Remote
Reposted 3 days ago

Get Ready For Your
Next Interview

More Jobs at Gainwell Technologies

Senior Certificate Engineer (PKI / Active Directory)
$85K — $121K *
Wrangell, AK 99929 (Wrangell County)
Today
Information Technology
In-Person
Technical Delivery Team Manager (Remote in Georgia)
$86K — $123K *
Remote
Today
Healthcare
Remote in Georgia, US
Technical Delivery Team Manager (Remote in Georgia)
$86K — $123K *
Wrangell, AK 99929 (Wrangell County)
Today
Healthcare
In-Person
Experienced Claims Business Analyst
$86K — $124K *
Wrangell, AK 99929 (Wrangell County)
Today
Healthcare
In-Person
.Net/C# Developer
$69K — $99K *
Wrangell, AK 99929 (Wrangell County)
Today
Information Technology
In-Person

More Information Technology Jobs

Client Partner - Banking / Financial Services / Capital Markets
$325K — $350K + $100K bonus *
Large IT Services Firm (client of TechLink Systems)
New York, NY 10001 (New York County)
1 week ago
Business Development Director
$300K — $345K + $120K bonus *
Tier1 IT Services Firm
Kansas City, MO 64116 (Clay County)
2 weeks ago
Client Partner / Business Developemnt - Banking
$250K — $320K + $70K bonus *
IT Services Firm (client of TechLink Systems)
New York, NY 10001 (New York County)
2 weeks ago
Computer Programmer II
$70K — $95K *
All Native Group
Remote
Reposted Today
Information Systems Security Officer, Staff
$82K — $90K *
AMERICAN SYSTEMS
Middletown, RI 02842 (Newport County)
Today

Find similar Senior Certificate Engineer (PKI / Active Directory) jobs:

Nationwide Wrangell, AK