Cryptography Lead SME

KRIS INFOTECH PTE. LTD.

Job Description

  • Lead onboarding, deployment, integration, discovery, scanning, and operationalization of the AgileSec Analytics platform within large enterprise environments.
  • Own platform architecture, deployment standards, configuration management, upgrades, patching, and operational readiness.
  • Implement and optimize certificate and asset discovery using tools such as Cipher Insights to identify unknown certificates, machine identities, and security risks.
  • Manage enterprise certificate lifecycle including issuance, renewal, revocation, rotation, trust stores, and PKI operations.
  • Troubleshoot TLS handshake issues, certificate chain problems, trust failures, OCSP/CRL validation issues, and certificate expiration incidents.
  • Integrate and operate Keyfactor or equivalent PKI management solutions across enterprise environments.
  • Design and implement REST API, webhook, and system integrations while ensuring secure credential management and stable connectivity.
  • Build automated certificate workflows integrated with CI/CD pipelines including Azure DevOps, GitHub Actions, Jenkins, Terraform, Ansible, and Helm.
  • Administer Linux environments and support Kubernetes-based platform services, upgrades, performance tuning, and troubleshooting.
  • Develop and maintain OpenSearch, ELK, Splunk dashboards, queries, reports, monitoring, and analytics capabilities.
  • Configure monitoring, alerting, platform health dashboards, and user activity reporting. Integrate AgileSec and Keyfactor with AWS, Azure, F5, NGINX, IIS, Kubernetes, and enterprise infrastructure components.
  • Lead troubleshooting and remediation of certificate-related outages, trust failures, connectivity problems, and platform incidents.
  • Create and maintain detailed technical documentation, operational procedures, administrator guides, and support runbooks.
  • Act as the primary technical lead for security, infrastructure, engineering, and operations teams.
  • Provide technical leadership and guidance to junior and mid-level engineers and ensure effective knowledge transfer.
  • Partner with engineering teams to deliver Security-as-Code and automate security controls across the enterprise.

Requirements

  • Having 8+ years of experience.
  • Skilled in PKI, Keyfactor, TLS/SSL, OpenSearch, ELK, Splunk, REST APIs, Linux, Kubernetes, Python, PowerShell, Bash, CI/CD, Terraform, Ansible, Cloud Platforms.
  • Strong communication, cross-functional collaboration, technical leadership, documentation, problem-solving, and stakeholder engagement.
  • Certification: CISSP, CISM, CCSP, RHEL etc.