Skip to main content
Back to jobs

Cryptography Lead SME (PKI & Certificate Management)

External
TEKISHUB CONSULTING SERVICES PTE. LTD. logoTekishub Consulting · Pekin Street, Singapore
S$54K–S$60K/yrFull-timeUnknownToday
Information Technology
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role


Responsibilities

  • Lead the deployment, onboarding, integration, and operational management of enterprise cryptography and certificate management platforms.
  • Design and maintain platform architecture, configuration standards, upgrades, patching, and operational readiness.
  • Implement enterprise-wide certificate discovery and visibility solutions to identify certificates, machine identities, and potential security risks.
  • Manage the complete certificate lifecycle, including certificate issuance, renewal, revocation, rotation, trust store management, and Public Key Infrastructure (PKI) operations.
  • Troubleshoot TLS/SSL handshake failures, certificate chain validation issues, trust failures, OCSP/CRL validation problems, and certificate expiry incidents.
  • Configure, integrate, and administer enterprise PKI management platforms such as Keyfactor or equivalent solutions.
  • Design and develop secure REST API integrations, webhooks, and platform connectivity while ensuring secure credential management.
  • Develop and maintain automated certificate management workflows integrated with CI/CD pipelines using tools such as Azure DevOps, GitHub Actions, Jenkins, Terraform, Ansible, and Helm.
  • Administer Linux servers and support Kubernetes-based platform deployments, upgrades, performance tuning, and troubleshooting.
  • Build and maintain monitoring dashboards, analytics, and reporting using OpenSearch, ELK Stack, or Splunk.
  • Configure observability solutions, monitoring alerts, platform health dashboards, and operational reporting.
  • Integrate enterprise cryptography platforms with cloud services and infrastructure components including AWS, Microsoft Azure, Kubernetes, F5, NGINX, and IIS.
  • Lead troubleshooting and resolution of certificate-related incidents, connectivity issues, trust failures, and platform outages.
  • Develop and maintain technical documentation, operational procedures, administrator guides, and support runbooks.
  • Collaborate with security, infrastructure, engineering, and operations teams to deliver secure and scalable solutions.
  • Provide technical leadership, mentorship, and knowledge sharing to engineering teams.
  • Support Security-as-Code initiatives by implementing automation and security controls across enterprise platforms.

Requirements

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related discipline.
  • At least 8 years of experience in cybersecurity, enterprise infrastructure, PKI, or certificate management.
  • Strong hands-on experience with Public Key Infrastructure (PKI) and enterprise certificate lifecycle management.
  • Experience managing enterprise cryptography platforms such as Keyfactor or equivalent PKI solutions.
  • Strong understanding of TLS/SSL protocols, certificate chains, trust models, OCSP, and CRL validation.
  • Experience with REST APIs, webhook integrations, and secure system integration.
  • Hands-on experience with Linux administration and Kubernetes environments.
  • Experience working with DevSecOps and CI/CD automation tools such as Azure DevOps, GitHub Actions, Jenkins, Terraform, Ansible, and Helm.
  • Experience with monitoring and analytics platforms including OpenSearch, ELK Stack, or Splunk.
  • Knowledge of cloud platforms such as AWS and Microsoft Azure.
  • Proficiency in scripting languages such as Python, PowerShell, or Bash.
  • Strong troubleshooting, analytical, and problem-solving skills.
  • Excellent communication skills with the ability to work effectively with cross-functional stakeholders.
  • Experience leading technical initiatives and mentoring engineering teams will be an advantage.

Additional Information

Job Description We are seeking an experienced Cryptography Lead SME to lead the deployment, integration, and operational management of enterprise cryptography and certificate lifecycle management platforms. The successful candidate will play a key role in strengthening enterprise security by managing PKI infrastructure, TLS/SSL technologies, certificate automation, and cloud integrations while driving security best practices across the organisation. This role requires strong expertise in enterprise cryptography, DevSecOps automation, Linux, Kubernetes, and cloud technologies within large-scale environments.


Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at TEKISHUB CONSULTING SERVICES PTE. LTD.? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect