DV Cleared Principal Infrastructure Engineer (PKI)

Morson Group
Yeovil, United Kingdom
2 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 208K

Job location

Yeovil, United Kingdom

Tech stack

Microsoft Windows
Microsoft Active Directory
Amazon Web Services (AWS)
Systems Engineering
Azure
Bash
Computer Networks
Dynamic Host Configuration Protocol
Linux
DNS
Hardware Security Module
Hyper-V
Python
Public Key Infrastructure
Powershell
Ansible
Security Information and Event Management
TCP/IP
Virtualization Technology
SSL Certificate Management
DevOps Tools - Open-source
Firewalls (Computer Science)
Terraform
VMware

Job description

Our client is seeking a Principal Platform Engineer to join the Cyber & Security Solutions Division team. This role is focused on delivering, maintaining, and improving platform and systems engineering solutions that underpin critical defence, government and public sector services.

What you will do as a Principal Platform Engineer Act as the technical authority on one of our platform engineering domains (e.g. virtualisation) providing specialist domain expertise to projects and programmes.

Lead the design and implementation of secure platforms across on-premise, hybrid, and cloud environments.

Capture, analyse, and interpret complex customer requirements to drive system design and architecture.

Develop high- and low-level designs, ensuring alignment with secure-by-design principles.

Take ownership of technical delivery within work packages, including planning, estimation, and progress reporting.

Mentor, coach, and develop junior and senior engineers, raising technical capability across the community.

Provide input to technology strategies, feasibility studies, and innovation projects.

Engage with internal and external stakeholders, presenting technical solutions and justifying design decisions.

Requirements

Windows and Linux operating systems Virtualisation platforms (VMware, Hyper-V) Public Key Infrastructure (PKI) design and implementation Certificate lifecycle management (issuance, renewal, revocation) Integration of PKI with enterprise platforms (Active Directory, applications, devices) Understanding of cryptographic principles and secure communications Networking concepts (TCP/IP, DNS, DHCP, firewalls) Automation and scripting (PowerShell, Bash, Python, Ansible, Terraform) Knowledge of cyber security controls and accreditation requirements Experience across the systems engineering lifecycle Design and assurance of trust models and certificate usage across systems Delivery within highly controlled / secure environments (e.g. defence, air-gapped)

Your work will see you take the lead in solving customer problems in an agile, innovative and team-centric manner., Extensive technical expertise across multiple platform domains, with a track record of delivering secure solutions.

The ability to balance hands-on engineering with technical leadership and mentorship.

A problem-solving mindset, able to innovate and recommend the best approach for complex challenges.

Core areas (must have): Windows and Linux operating systems

Virtualisation platforms (VMware, Hyper-V)

Public Key Infrastructure (PKI) design and implementation

Certificate lifecycle management (issuance, renewal, revocation)

Integration of PKI with enterprise platforms (Active Directory, applications, devices)

Understanding of cryptographic principles and secure communications

Networking concepts (TCP/IP, DNS, DHCP, firewalls)

Automation and scripting (PowerShell, Bash, Python, Ansible, Terraform)

Knowledge of cyber security controls and accreditation requirements

Experience across the systems engineering lifecycle

Design and assurance of trust models and certificate usage across systems

Delivery within highly controlled / secure environments (e.g. defence, air-gapped)

Desirable: Expertise with cloud platforms (AWS, Azure) and Infrastructure as Code

Experience integrating enterprise services (Active Directory, identity, monitoring, SIEM)

Hands-on use of DevSecOps tools and CI/CD pipelines

Hardware Security Modules (HSMs)

Cross-domain / secure communications environments

Automation of certificate management at scale

Apply for this position