Marketing Info/Reason's to Work here:

• Co Size: $36 Billion in Revenue, 273.42k employees
• One of the largest professional consulting firms in the World, recognized as a "white glove service" providing world class solutions to Fortune 500 customers
• KPMG will often "redeploy" contractors they have worked with previously on future engagements. High likelihood for future projects with KPMG once you have worked contracts with them
• Opportunity to work on highly technical, complex, & interesting projects. This variety can keep you work engaging and help build a diverse portfolio 
• Being part of one of the Big Four accounting firms add significant prestige to your resume & opens doors to future career opportunities 

KPMG Specific Submission Requirements:

• All submittals must include the MMDD of the DOB of the resource
• W2 is highly preferrable, if C2C; must be USC or GC holder within a multi-person corporation
• All submittals must include the candidate's full legal name
• All submittals must include the R2R

To Be included in Your Submission Notes:
Submission notes are used to sell in your candidates directly with the hiring manager.
Please validate the candidates experience with the requirements listed & include that in your submission notes to help sell your candidate
Have you been contacted by KPMG or by another agency for any KPMG contract roles within the last 6 months?

• If yes, what role were you submitted to and who were you contacted by?

Do you have any relatives currently working at KPMG? Are you a former employee of KPMG?

• If yes, were you a contract employee or direct hire?
  • Please provide the name of the engagement manager & dates

 
AM: Daron Blaylock
Category: TECH - NSD
Industry: Professional Services
Background: Credit Check is required.  Please make sure that your candidate is aware of it.
Bill Rate:155.17$/HR (can flex up or down here if needed, please submit qualified candidates)
Pay Rate: $98.00/HR
Length: 3 months
Hours: 40
Location: Remote
Positions Available: 1
Submission Limit: 2
Engagement Code: GEV IAM Non-Prod Build (2002197511)
Travel: N   
Sold Work: Yes
Competition: No
H1b's: N
Conf Call N
Start: 12/08/2025 - 3/31/2026

Job Description from Beeline:
We are seeking an experienced, client-facing Public Key Infrastructure (PKI) Engineer for a hands-on technical role. The successful candidate will be responsible for the end-to-end implementation, deployment, and management of highly available PKI solutions for our clients, with a required expertise in Venafi and DigiCert One. This position focuses on building robust integrations with enterprise applications, managing machine identities, and executing key lifecycle management processes to meet the client's project goals.


Responsibilities:

• PKI Solution Implementation: Design, deploy, configure, and manage highly available PKI solutions, with a primary focus on the Venafi Trust Protection Platform and DigiCert One within the client's environment.
• PKI Solution Implementation: Design, deploy, configure, and manage highly available PKI solutions, with a primary focus on the Venafi Trust Protection Platform and DigiCert One within the client's environment.
• Machine Identity Management: Develop and implement strategies for effective machine identity and key lifecycle management, including discovery, creation, distribution, rotation, and revocation of cryptographic keys and digital certificates.
• HSM & Code Signing: Configure, deploy, and manage Hardware Security Modules (HSMs) to secure critical cryptographic keys. Implement and manage secure code signing processes to ensure the integrity and authenticity of the client's software.
• Troubleshooting and Support: Act as the subject matter expert for PKI-related issues, providing advanced troubleshooting for certificate-related incidents and integration failures. Serve as an escalation point for the project team.
• Troubleshooting and Support: Act as the subject matter expert for PKI-related issues, providing advanced troubleshooting for certificate-related incidents and integration failures. Serve as an escalation point for the project team.
• Collaboration: Work closely with client application owners, security architects, project managers, and other stakeholders to gather requirements and deliver robust PKI solutions.
• Documentation: Create and maintain detailed documentation of the PKI architecture, configurations, integrations, and operational processes for project deliverables.
• Act with integrity, professionalism, and personal responsibility to uphold the firm’s respectful and courteous work environment.

Qualifications:

 

• Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent practical
  Experience.
• PKI Expertise: Minimum of 3-5 years of hands-on experience with enterprise PKI solutions, with a demonstrated focus on certificate and machine identity lifecycle management. Specific, deep expertise with Venafi and DigiCert One is mandatory.
• Security Fundamentals: Strong understanding of cryptographic concepts, PKI, and machine identity management principles.
• Technical Protocols: In-depth knowledge of cryptographic protocols (TLS/SSL, S/MIME), certificate enrollment protocols (SCEP, EST), and directory services (Active Directory, LDAP).
• Technical Skills: Proven experience with integrating PKI solutions into enterprise applications, cloud platforms (AWS, Azure), and CI/CD pipelines. Familiarity with Hardware Security Modules (HSMs). Proficiency in PowerShell or other scripting languages for automation is necessary.
• Problem-Solving: Excellent analytical and problem-solving skills, with the ability to troubleshoot complex technical issues in a project-based environment.
• Communication: Strong written and verbal communication skills, with the ability to articulate complex technical concepts to both technical and non-technical stakeholders.
  Desired:
•  Experience working in a professional services or consulting environment on client-facing projects.
• Familiarity with other PKI and security tools (e.g., Microsoft AD CS, HashiCorp Vault, CyberArk).
• Relevant industry certifications (e.g., CISSP, CISM, or vendor-specific credentials).
• Understanding of ITIL processes for incident, change, and problem management.