Skip to sign up

Job matched to your search

Cryptography Lead SME (PKI & Certificate Management)

TekisHub Consulting Services · SG

SG · On-siteFull-TimePosted Jul 1, 2026

Free · Join 5,000+ job seekers using Qarera

How well do you match this role?

Tap the skills you already have — then see your real match score, what’s missing, and your resume fixed for this job.

↑ tap the skills you have
Loading sign-in…
Free · no credit card · 30 seconds

Job description

Job Description

We are seeking an experienced Cryptography Lead SME to lead the deployment, integration, and operational management of enterprise cryptography and certificate lifecycle management platforms. The successful candidate will play a key role in strengthening enterprise security by managing PKI infrastructure, TLS/SSL technologies, certificate automation, and cloud integrations while driving security best practices across the organisation.

This role requires strong expertise in enterprise cryptography, DevSecOps automation, Linux, Kubernetes, and cloud technologies within large-scale environments.

Key Responsibilities

  • Lead the deployment, onboarding, integration, and operational management of enterprise cryptography and certificate management platforms.
  • Design and maintain platform architecture, configuration standards, upgrades, patching, and operational readiness.
  • Implement enterprise-wide certificate discovery and visibility solutions to identify certificates, machine identities, and potential security risks.
  • Manage the complete certificate lifecycle, including certificate issuance, renewal, revocation, rotation, trust store management, and Public Key Infrastructure (PKI) operations.
  • Troubleshoot TLS/SSL handshake failures, certificate chain validation issues, trust failures, OCSP/CRL validation problems, and certificate expiry incidents.
  • Configure, integrate, and administer enterprise PKI management platforms such as Keyfactor or equivalent solutions.
  • Design and develop secure REST API integrations, webhooks, and platform connectivity while ensuring secure credential management.
  • Develop and maintain automated certificate management workflows integrated with CI/CD pipelines using tools such as Azure DevOps, GitHub Actions, Jenkins, Terraform, Ansible, and Helm.
  • Administer Linux servers and support Kubernetes-based platform deployments, upgrades, performance tuning, and troubleshooting.
  • Build and maintain monitoring dashboards, analytics, and reporting using OpenSearch, ELK Stack, or Splunk.
  • Configure observability solutions, monitoring alerts, platform health dashboards, and operational reporting.
  • Integrate enterprise cryptography platforms with cloud services and infrastructure components including AWS, Microsoft Azure, Kubernetes, F5, NGINX, and IIS.
  • Lead troubleshooting and resolution of certificate-related incidents, connectivity issues, trust failures, and platform outages.
  • Develop and maintain technical documentation, operational procedures, administrator guides, and support runbooks.
  • Collaborate with security, infrastructure, engineering, and operations teams to deliver secure and scalable solutions.
  • Provide technical leadership, mentorship, and knowledge sharing to engineering teams.
  • Support Security-as-Code initiatives by implementing automation and security controls across enterprise platforms.

Requirements

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related discipline.
  • At least 8 years of experience in cybersecurity, enterprise infrastructure, PKI, or certificate management.
  • Strong hands-on experience with Public Key Infrastructure (PKI) and enterprise certificate lifecycle management.
  • Experience managing enterprise cryptography platforms such as Keyfactor or equivalent PKI solutions.
  • Strong understanding of TLS/SSL protocols, certificate chains, trust models, OCSP, and CRL validation.
  • Experience with REST APIs, webhook integrations, and secure system integration.
  • Hands-on experience with Linux administration and Kubernetes environments.
  • Experience working with DevSecOps and CI/CD automation tools such as Azure DevOps, GitHub Actions, Jenkins, Terraform, Ansible, and Helm.
  • Experience with monitoring and analytics platforms including OpenSearch, ELK Stack, or Splunk.
  • Knowledge of cloud platforms such as AWS and Microsoft Azure.
  • Proficiency in scriptin

Don’t just read the job — see if you’ll get it.

Get your match score, a resume tailored to this exact role, and jobs like it — free.

Check my fit for this job
Loading sign-in…
Apply →