Trust Services Standards & Regulatory Specialist (eIDAS, ETSI)

Position Overview

This position focuses on making sure certification and trust service frameworks built on PKI meet local regulatory expectations and internationally accepted standards. The work centers on eIDAS principles, ETSI trust service requirements, and PKI good practice, while also supporting supervision, licensing, conformity assessment, and policy work for digital trust ecosystems.

Key Responsibilities

• Keep up-to-date expertise in global trust services and PKI frameworks, with eIDAS used as the reference model for electronic identification and trust services.
• Work with eIDAS concepts such as electronic signatures, seals, timestamps, registered electronic delivery, website authentication, and electronic archiving in PKI-based trust structures.
• Review qualified and non-qualified trust services, including cryptographic assurance levels, compliance obligations, and regulatory impact.
• Build and maintain strong knowledge of ETSI EN 319 series standards, including EN 319 401, EN 319 411-1, EN 319 411-2, EN 319 421, EN 319 451, and EN 319 452.
• Support how ETSI and PKI standards are interpreted and applied in licensing reviews, technical assessments, and supervisory work.
• Advise on how technical and PKI requirements should be aligned with recognized assurance and compliance frameworks.
• Assist with conformity assessments, audits, and ongoing supervision of Certification Service Providers and Trust Service Providers.
• Examine audit and assessment findings produced by approved Conformity Assessment Bodies.
• Assess compliance against ETSI requirements, PKI security expectations, and relevant regulatory rules.
• Contribute to regulatory decisions on qualification, compliance issues, corrective measures, suspension, or withdrawal of trust services.
• Use eIDAS, ETSI, and PKI standards as reference points for regulatory development and international alignment.
• Track changes in eIDAS 2.0, digital identity wallets, newer PKI implementations, and emerging trust services.
• Prepare briefing materials, regulatory guidance, position papers, and executive summaries for internal and external stakeholders.
• Convert complex technical and regulatory material into practical policy recommendations.

Qualifications & Experience

• A bachelor’s degree in Information Security, Computer Science, Information Technology, Cybersecurity, Law, Engineering, or a closely related discipline is required.
• At least 5 to 8 years of experience in PKI, digital trust services, cybersecurity compliance, regulatory affairs, or a similar area.
• Prior exposure to regulators, auditors, certification bodies, trust service providers, or PKI operators is strongly preferred.
• Professional certifications in information security, PKI, cybersecurity, or compliance will be an added advantage.

Required Knowledge & Skills

• Strong command of eIDAS principles, legal assurance levels, and supervisory structures.
• Sound understanding of Public Key Infrastructure, including certification authorities, certificate lifecycle management, trust chains, key management, and cryptographic assurance.
• Hands-on familiarity with ETSI trust service standards and how they are used in audits and regulatory oversight.
• Knowledge of audit, accreditation, and conformity assessment systems connected to trust services.
• Strong analytical ability, regulatory judgment, and policy-development capability.
• Excellent report drafting, documentation, and stakeholder communication skills.
• Ability to convert international standards into practical and enforceable regulatory requirements.

Preferred Skills

• Understanding of digital identity ecosystems and trust frameworks.
• Exposure to eIDAS 2.0 and Digital Identity Wallet initiatives.
• Background in regulatory compliance, governance, risk management, and cybersecurity standards.
• Ability to collaborate effectively with technical, legal, and senior executive stakeholders.

Additional Information

This role is based in Doha, Qatar, and is a full-time onsite position. The work is centered on trust services, certification service providers, eIDAS, ETSI, and PKI governance.