Architect, Microsoft Identity & PKI
Summary
The role of the Microsoft Identity Architect / PKI is to design and lead enterprise-scale identity and PKI modernization initiatives, ensuring secure and scalable certificate lifecycle management. This individual leverages expertise in Microsoft Entra, Hybrid Join, and KeyFactor technologies to architect and automate identity and cryptographic solutions across complex environments. The role also provides technical leadership in advancing PKI strategies, including HSM integration and Post-Quantum Cryptography readiness.
Description
- The candidate must have hands-on experience with enterprise PKI modernization in large-scale environments.
- They should be proficient in working with KeyFactor and KeyFactor Command for certificate lifecycle automation.
- The role requires strong knowledge of Microsoft Entra and Hybrid Join capabilities within identity ecosystems.
- The candidate must have practical experience with HSMs (onprem), CA/RA processes, and CRL/OCSP operations.
- They should demonstrate awareness of PQC (PostQuantum Cryptography) and its impact on PKI modernization strategies
Qualifications
- The candidate must have minimum of 2+ years of direct experience supporting or delivering enterprise PKI solutions.
- They must have a proven ability to work with KeyFactor technologies and certificate management automation at scale.
- The role requires strong expertise in Microsoft identity platforms, including Entra, Hybrid Join, Conditional Access, and passwordless authentication.
- The candidate should have demonstrated experience providing technical leadership and architecture guidance in client-facing delivery engagements.
- They must be capable of contributing to modernization initiatives involving HSM analysis, KeyFactor migration, and PQC roadmap activities.
Location
This role is Remote - with mandatory 1st week orientation onsite in Atlanta, Baltimore or Washington DC.
To be considered for this position, candidates must reside in one of the following U.S. states: GA, MD, and Washington DC. Candidates residing outside these states are not eligible for consideration currently.
Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa currently.
We are committed to pay equity and transparency. The compensation range for this position represents our good faith estimate of the range we reasonably expect to pay for this role at the time of posting. The actual compensation offered will be determined based on factors such as the candidate’s experience, skills, education, work location, and internal equity.
In addition to base pay, employees may be eligible for discretionary bonuses, commissions, or other incentive programs, as well as a comprehensive benefits package that includes medical, dental, vision, 401(k), paid time off, etc.
Estimated Compensation Range:
$98,000 - $118,000 USD
FormativGroup operates within the critical middle layer of business technology, where applications and systems connect infrastructure to business processes. We are specialists who help the middle market take full advantage of their technology investments with deep, industry-centric expertise, all in one place, to unify fragmented systems. With deep technical expertise across cloud architecture, system integration, AI, and data strategy, we bridge the gap between business goals and modern platforms.
FormativGroup is an equal opportunity employer providing opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
ADA Specifications: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position.
#formativgroupcareers #WorkWithUs
Click here to view our Privacy Policy
Create a Job Alert
Interested in building your career at FormativGroup? Get future opportunities sent straight to your email.
Apply for this job
*
indicates a required field