Vlad Bodnar
@vladbodnar
Senior PKI & Cybersecurity Architect specializing in automated certificate lifecycle management and compliance.
United StatesWhat I'm looking for
I’m a Senior PKI & Cybersecurity Architect with 25+ years in IT, 20+ years in security, and 15+ years specializing in PKI and certificate lifecycle management. My work consistently aligns enterprise PKI architectures to NIST and PCI-DSS, with a strong focus on governance, reliability, and risk reduction.
In my current role as Cloud Engineer / PKI Admin at CarMax, I developed and integrated tools to automate PKI using Venafi Trust Protection Platform. I manage Venafi internal and DigiCert external CAs, templates, and permissions, and integrate REST API-driven certificate lifecycle automation across OpenShift and IIS-based applications.
Previously, as VP, Senior Security Venafi PKI Architect at Citizens Bank, I designed enterprise PKI architecture and an automation strategy using Venafi. I led ZeroTouch PKI integrations, Venafi CLM upgrades, and PKI automation across Kubernetes and CI/CD pipelines, including ServiceNow automation for lifecycle workflows.
I’ve also led PKI and security initiatives across organizations including TCS Consultancy, IDMWORKS, Voya Financial, Ameriprise Financial, and multiple banks. From automating renewal workflows with PowerShell/Bash to administering ADCS and HSM environments, I bring DevSecOps-minded execution, cryptography expertise, and compliance-driven implementation backed by practical, production deployments.
Experience
Work history, roles, and key accomplishments
Developed and integrated Venafi Trust Protection Platform automation to manage CAs, templates, and permissions, supporting certificate issuance, revocation, and validation. Integrated REST API workflows with OpenShift and IIS and ensured platform stability through Venafi upgrades.
Baggage Handler / Below Wing Agent
Delta Airlines
Jul 2021 - Present (4 years 10 months)
Handled baggage, cargo, and aircraft ground operations while ensuring safe execution of on-time ground support. Maintained compliance with aviation safety standards during daily operations.
Designed enterprise PKI architecture and automation strategy using Venafi, leading ZeroTouch PKI integrations and Venafi CLM upgrades. Integrated PKI automation with Kubernetes, CI/CD pipelines, and APIs and implemented ServiceNow automation for certificate lifecycle management.
PKI / Venafi Engineer
TCS Consultancy
Apr 2020 - Jul 2022 (2 years 3 months)
Automated certificate renewal workflows using PowerShell and Bash scripting and supported Venafi upgrades for enterprise PKI environments. Developed build/test documentation and GitHub automation repositories and led PKI policy and governance alignment initiatives.
PKI / Venafi Lead
IDMWORKS
Jul 2021 - Dec 2021 (5 months)
Led Venafi upgrades and production deployments and designed certificate lifecycle automation workflows. Trained teams and supported PKI operations.
Data Security Lead (CMMC)
InfoSys
Jul 2020 - Jul 2021 (1 year)
Led CMMC compliance initiatives and remediation planning and implemented IAM, GRC, and PKI security controls. Performed NIST-based gap analysis and drove security improvements.
Designed enterprise PKI automation using Venafi APIs and led cross-functional PKI initiatives and documentation. Integrated PKI with load balancers and enterprise systems to support secure connectivity.
Administered ADCS, HSMs, and PKI infrastructure and maintained production and disaster-recovery PKI environments. Designed DevSecOps PKI proof-of-concept solutions and supported certificate security needs.
Identity Access Engineer
TCF Bank
Dec 2017 - Apr 2018 (4 months)
Delivered IAM and PKI solutions aligned with governance frameworks, including certificate lifecycle management and monitoring automation. Managed automated oversight for identity and certificate lifecycle processes.
Supported IAM provisioning and risk management processes. Managed eDiscovery and provided support for Exchange migration activities.
Senior PKI Specialist (Venafi SME)
Cyber Defense Solutions
Sep 2016 - Sep 2017 (1 year)
Managed enterprise PKI infrastructure and Venafi automation and integrated ServiceNow with PKI workflows. Delivered training and performed vulnerability assessments related to PKI and security operations.
Supported server patching and IIS/system troubleshooting and managed RSA authentication and production monitoring. Provided ongoing operational support to maintain stability and performance for production systems.
Supported Exchange, Office 365, Lync, and SharePoint environments and managed email security and certificate renewals. Maintained secure collaboration and messaging operations through ongoing certificate and security support.
Administered Exchange, Active Directory, and PKI email security and developed PowerShell scripts to support automation. Managed enterprise storage systems used by messaging and security operations.
Education
Degrees, certifications, and relevant coursework
Venafi
Venafi Security Administrator (VSA), Venafi Security Administration
Earned the Venafi Security Administrator (VSA) credential in 2025.
Microsoft
MCSE, Network Support
Earned an MCSE certification focused on network support (year not specified).
Sacramento City College
Partial coursework, Computer Science
Completed partial coursework in Computer Science (dates not specified).
Moldova
Theology Studies, Theology
Completed Theology Studies in Moldova (institution and dates not specified).
Tech stack
Software and tools used professionally
Availability
Location
United StatesAuthorized to work in
Job categories
Interested in hiring Vlad?
You can contact Vlad and 90k+ other talented remote workers on Himalayas.
Message VladFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
