L3 IAM & PKI Engineer

Job Description:

L3 IAM & PKI Engineer – Advanced Support & Architecture

Key Responsibilities:

• Advanced Technical Support & Escalation Management:

  
  

• Serve as the ultimate escalation point for complex issues affecting IAM and PKI systems.

  
  

• Conduct in-depth troubleshooting, perform root cause analysis, and implement long-term corrective actions.

  
  

• System Design, Configuration & Optimization:

  
  

• Architect and optimize Privileged Access Management, IGA, and Remote Access solutions.

  
  

• Oversee the design, implementation, and maintenance of PKI infrastructures, including certificate issuance, renewal, and revocation processes.

  
  

• Develop and enforce best practices and security policies for IAM and PKI systems.

  
  

• Incident Response & Continuous Improvement:

  
  

• Lead response efforts during critical security events and drive post-incident reviews.

  
  

• Analyze incident data to identify trends and implement proactive measures for risk mitigation.

  
  

• Technical Leadership & Collaboration:

  
  

• Mentor L2 team members and document advanced procedures, standard operating procedures (SOPs), and system configurations.

  
  

• Collaborate with cross-functional teams (IT, security, compliance) to align IAM and PKI strategies with overall business objectives.

  
  

• Governance & Compliance:

  
  

• Ensure all IAM and PKI activities comply with regulatory requirements and internal security policies.

  
  

• Participate in audits, risk assessments, and policy reviews to maintain a strong security framework.

  
  

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.

  
  

• 7+ years of experience in identity and access management or PKI, with a proven track record in handling complex security solutions.

  
  

• Demonstrated expertise with Privileged Access Management, IGA, Remote Access Solutions, and PKI systems.

  
  

• Strong analytical, troubleshooting, and problem-solving skills.

  
  

• Excellent communication and leadership abilities.

  
  

Desired Skills & Certifications:

• Advanced industry certifications such as CISSP, CISM, or equivalent.

  
  

• Vendor-specific certifications in IAM, PKI, or related security technologies are highly desirable.

  
  

• Proficiency in ITIL processes, risk management, and change management.

  
  

• Experience in enterprise-level security architecture and compliance.

  
  

Working Conditions:

• Full-time role with standard hours and potential on-call responsibilities during critical incidents.

  
  

• Fast-paced, high-pressure environment with opportunities for global collaboration.

  
  

• Occasional extended hours may be required during planned maintenance or security incidents.

  
  

SM, or CISA are a plus

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is availablehere.