PKI Compliance Specialist

ECCO Gulf Majorel Qatar is seeking an experienced PKI Compliance Specialist to join our team in Qatar. As a key player in our Information Technology and Services sector, you will ensure the integrity and security of our Public Key Infrastructure (PKI) systems. Your role will involve maintaining compliance with industry standards and regulations, and supporting the implementation of secure digital communications.

• Develop and maintain PKI policies and procedures to ensure compliance with relevant standards and regulations.
• Conduct regular audits and assessments of PKI systems to identify and mitigate risks.
• Collaborate with IT and security teams to implement PKI solutions and enhancements.
• Ensure that all Trust Service Providers (TSPs) comply with internal policies, international standards, and applicable trust service frameworks (e.g., eIDAS, CA / B Forum).
• Develop and maintain compliance procedures, certificate lifecycle documentation, and governance frameworks for PKI environments.
• Conduct internal audits, risk assessments, and gap analyses of PKI operations, focusing on key areas such as certificate issuance, revocation, and key storage.
• Evaluate and validate Certificate Signing Requests (CSRs) for accuracy, legitimacy, and alignment with policy requirements.
• Assist in defining and maintaining Certificate Policies (CP) and Certification Practice Statements (CPS) to support operational and regulatory compliance.
• Coordinate with internal security, infrastructure, and operations teams to address non-compliance issues and propose effective remediation plans.
• Stay informed on updates to PKI-related regulations, technical standards, and best practices; ensure continuous alignment with evolving global frameworks.
• Support the incident response process for certificate misuse or suspected key compromise, and participate in root cause investigations.
• Perform technical reviews and compliance verification of third-party trust services integrated into the environment.
• Provide guidance and training to stakeholders on PKI compliance practices, certificate management, and secure key handling procedures.
• Maintain accurate records of certificate inventories, compliance status reports, and audit findings for regulatory or contractual audits.
• Performs any other related duties as required.

Required Profile

We are looking for a dedicated and knowledgeable professional with a strong background in PKI compliance. The ideal candidate will possess the following skills and qualifications :

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a closely related field.
• Minimum 5+ years of relevant experience in PKI systems, compliance auditing, or digital trust frameworks.
• Proven experience in PKI management and compliance.
• Strong understanding of cryptographic principles and digital certificates.
• Familiarity with industry standards such as X.509, SSL / TLS, and related protocols.
• Excellent analytical and problem-solving skills.
• Ability to work collaboratively in a team environment.
• Strong communication skills, both written and verbal.
• Relevant certifications such as CISSP, CISA, ISO / IEC 27001 Lead Implementer, CEH, NIST 800-63, eIDAS, or equivalent, or Certified PKI Professional are Mandatory .
• Deep knowledge of PKI principles, certificate authorities, digital certificates, and cryptographic protocols (e.g., TLS / SSL, X.509).
• Strong analytical and documentation skills with a detail-oriented, structured approach to compliance tasks.
• Excellent oral and written communication skills (including report writing) in English and Arabic.
• Effective communicator, able to explain technical compliance requirements to both technical and non-technical stakeholders.

Apply now

A big team is looking forward to you. Apply here!