EQUANS

Equans is a world leader in the energy and services sector, with annual revenues of nearly €19,2 billion* and almost 800,000 projects.​

Equans has leading positions in Europe, which is the result of the history of energy construction in these countries, and strong presences in North and South America and in Oceania.​

With nearly 90,000 highly skilled employees, Equans has a strong geographic footprint, anchored by historic local brands. Equans provides its customers with excellent technical expertise in the design, installation, maintenance and operation of multi-technical facilities. This know-how is based on key skills. First of all, in electrical and thermal engineering – two strong points that help accelerate the reduction of our clients’ carbon footprint – but also in ventilation, refrigeration, mechanics and robotics, fire protection, energy renovation, digital solutions, IT, cyber security and telecommunications.​

The combination of these expertise allows us to offer efficient and optimised solutions at all stages of the energy chain, from production, storage and transport to usage.

(*) Turnover 2024 consolidated

PKI Engineer/Admin​ (F/M)

Summary of the role

As a PKI Engineer, you will be responsible for the design, implementation, and continuous improvement of our global Public Key Infrastructure (PKI), supporting secure authentication, encryption, and digital trust across:

• 95,000 identities
• 2,300+ applications
• 100,000+ devices
• Hybrid environments (Active Directory & Entra ID)

You will manage the full certificate lifecycle, enforce cryptographic policies, and ensure compliance with industry standards and regulatory frameworks. This is a hands-on engineering role with strategic impact: ideal for professionals passionate about digital trust, automation, and secure identity.

• Design, implement, and maintain PKI infrastructure: CAs, RAs, HSMs.​
• Ensure PKI security and scalability: Support authentication, encryption, digital signatures.​
• Manage certificates: Issuance, renewal, revocation, lifecycle.​
• Maintain compliance: Industry standards and regulatory requirements.​
• Collaborate with teams: Integrate PKI with IAM, authentication, access control.​
• Monitor and improve security: PKI policies, trust models, cryptographic practices.​

KEY METRICS OF THE ENVIRONMENT

• Identities managed: 95,000
• Applications integrated: 2,300
• Devices managed: 100,000+
• Certificates issued: Thousands across users, devices, services, and applications

Key Objectives & KPIs

• Automate 90% of certificate lifecycle processes (issuance, renewal, revocation) by end of 2026
• Maintain PKI system uptime >99.9% and ensure cryptographic agility
• Deliver quarterly PKI health and compliance reports

KEY RESPONSIBILITIES

• Design, deploy, and maintain PKI environments: Ensure high availability, security, and compliance.​
• Manage certificate lifecycle: Issuance, renewal, revocation, CRL/OCSP configurations.​
• Integrate PKI with applications: Authentication services and secure communication.​
• Develop and enforce PKI policies: Key management and certificate trust models.​
• Monitor and respond to incidents: Resolve certificate and key management issues.​
• Implement certificate-based authentication: For applications, devices, and users.​
• Automate certificate processes: Provisioning, renewal, distribution.​
• Conduct audits and assessments: Ensure compliance with policies and regulations.​
• Maintain documentation: PKI architecture, configurations, procedures.​
• Provide support and training: PKI security practices and certificate management.​

PROFILE

Academic background & Experience

• 5+ years of experience in Azure AD, and Enterprise Identity Directory integration and synchronization.
• Proven experience in large-scale AD environments with multiple domains and trusts.
• Experience and aplication of secure design principles – security-by-design and compliance-by-design in identity architecture.
• Familiarity with compliance frameworks (ISO 27001, NIST, GDPR, etc.) as they relate to identity management
• Certifications in PKI (e.g. ACM, PKI in ADCS, ECES, CCSK) are considered a plus.

Behavioral Capabilities​

• Detail-oriented with a strong focus on security, compliance, and risk management.​
• Analytical and problem-solving mindset, capable of diagnosing and resolving complex PKI-related issues.​
• Strong communication and collaboration skills, able to work with cross-functional teams including security, IAM, and IT operations.​
• Proactive approach to security, continuously monitoring and improving PKI processes.​
• Ability to work under pressure, managing multiple tasks while ensuring PKI system availability and security.​
• Continuous learning mindset, staying updated with emerging cryptographic technologies and best practices.

Skills

• Proficiency and strong understanding of Public Key Infrastructure (PKI) concepts.
• Strong knowledge of Identity Management protocols and encryption algorithms.
• Experience with certificate lifecycle management and with certificate management tools.
• Hands-on experience with Microsoft AD Certificate services or similar PKI solutions.
• Experience with PowerShell scripting and automation for identity and access management tasks.

Why Join Us?

• Global Impact: Secure digital trust across a multinational identity ecosystem.
• Technical Challenge: Work on advanced cryptographic infrastructure and automation.
• Supportive Culture: Join a team that values innovation, transparency, and continuous improvement.