Pki Lead- Remote

Salary:  $130,000-$150,000 +bonus eligible

Who We Are

Compass Technology is a dedicated internal team for Compass Group delivering enterprise-wide initiatives that support our diverse customer base and enhance our business operations. 

Our domain encompasses a vast spectrum of opportunities, from hands-on desk support to Cybersecurity, Cloud Engineering, AI, and Modern Application development. We are committed to building robust IT infrastructures, driving digital transformation, and much more. 

Compass Group is the leading foodservice management and support services company, with $26 billion in revenue in 2023.

In 2023, Compass Group was named one of Forbes’ America’s Best Large Employers along Springbuk’s Healthiest 100 Workplaces in America (since 2019).

Job Summary

The PKI Lead is responsible for the design, governance, and strategic direction of Compass
Group's Public Key Infrastructure (PKI) across enterprise environments. This role provides
leadership for certificate lifecycle management, architecture of secure communications, and
alignment with corporate security policies. The PKI Lead serves as the primary subject matter
expert for all certificate services, tools, integrations, and operational policies, collaborating
closely with teams across Infrastructure, Security, and Cloud Engineering.
 

Key Responsibilities

• Lead the architecture and long-term strategy of PKI services across hybrid environments (onpremises
• and cloud).
• Own certificate lifecycle governance, including issuance, revocation, renewal policies, and
• automation standards.
• Design and enforce certificate authority hierarchies, trust boundaries, and template
• governance across all domains.
• Develop and maintain enterprise-wide policies and technical standards for PKI operations
• and security.
• Serve as the escalation point for all PKI-related incidents, including expired certificates or
• trust failures.
• Lead root cause analysis and remediation efforts for certificate-related outages and
• vulnerabilities.
• Provide technical leadership and mentoring for PKI engineers and cross-functional contributors.
• Drive automation initiatives for certificate operations using tools like Venafi,
• AppViewX, Centrify, DigiCert, and Certmonger.
• Manage and maintain Root and Subordinate CA configurations in accordance with Microsoft and industry best practices.
• Actively monitor emerging trends in cryptography, including post-quantum cryptography,
• and contribute to readiness efforts.
• Collaborate with cloud platform teams to ensure PKI integration with AWS (ACM), Azure, and other SaaS tools.
• Maintain documentation and operational runbooks to support audits, compliance, and repeatable PKI processes.
• Coordinate cross-team planning with security architecture, IAM, and application owners to
• align certificate strategy with business needs.
   

Required Qualifications

• 5+ years of experience in infrastructure or security engineering with a focus on PKI in large
• enterprise environments.
• Expertise with Microsoft Active Directory Certificate Services (ADCS), including Root and
• Subordinate CA design and operation.
• Hands-on experience with certificate management platforms like Venify, AppViewX, Certmonger, Centrify, DigiCert, and ACM.
• Deep understanding of TLS/SSL, OCSP, CRL, EKU/OID management, and smart card
• authentication.
• Scripting experience with PowerShell (required); Bash or Python a plus.
• Strong familiarity with enterprise security architecture, including Zero Trust and identity
• systems.
• Proven experience leading cross-team initiatives and serving as a technical advisor on
• cryptographic strategy.

Preferred Qualifications

• Exposure to hardware security modules (HSMs), Certificate Transparency, and code signing practices.
• Familiarity with post-quantum cryptographic standards (e.g., NIST PQC algorithms) and related vendor readiness.
• Experience integrating PKI with cloud platforms like AWS (ACM, CloudHSM), Azure Key Vault, or GCP.
• Participation in internal or external audits involving PKI controls (PCI, HIPAA, NIST).
• Prior experience mentoring junior engineers or leading initiatives without direct reports.
   

 Apply to Compass Group today!

Click here to Learn More about the Compass Story

Compass Group is an equal opportunity employer.  At Compass, we are committed to treating all Applicants and Associates fairly based on their abilities, achievements, and experience without regard to race, national origin, sex, age, disability, veteran status, sexual orientation, gender identity, or any other classification protected by law.

Qualified candidates must be able to perform the essential functions of this position satisfactorily with or without a reasonable accommodation. Disclaimer: this job post is not necessarily an exhaustive list of all essential responsibilities, skills, tasks, or requirements associated with this position. While this is intended to be an accurate reflection of the position posted, the Company reserves the right to modify or change the essential functions of the job based on business necessity. We will consider for employment all qualified applicants, including those with a criminal history (including relevant driving history), in a manner consistent with all applicable federal, state, and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, and the New York Fair Chance Act. 

Compass Technology maintains a drug-free workplace.

Applications are accepted on an ongoing basis.

Associates at Corporate are offered many fantastic benefits.

• Medical
• Dental
• Vision
• Life Insurance/ AD
• Disability Insurance
• Retirement Plan
• Paid Time Off
• Holiday Time Off (varies by site/state)
• Associate Shopping Program
• Health and Wellness Programs
• Discount Marketplace
• Identity Theft Protection
• Pet Insurance
• Commuter Benefits
• Employee Assistance Program
• Flexible Spending Accounts (FSAs)
• Paid Parental Leave
• Personal Leave

Associates may also be eligible for paid and/or unpaid time off benefits in accordance with applicable federal, state, and local laws. For positions in Washington State, Maryland, or to be p formed Remotely, click here for paid time off benefits information. 

Req ID:  1420183

Compass Technology

MARY DICKSON