Specialist

Role- PKI Certificate Management Specialist

Location- Noida / Chennai

Job Summary

We are looking for a seasoned Level 3 PKI Certificate Management Specialist to lead the design, implementation, and automation of enterprise-grade PKI environments. This role demands deep technical expertise in PKI architecture and certificate lifecycle management, along with strong collaboration and communication skills to work effectively across teams and stakeholders.

Key Responsibilities

PKI Design & Implementation

Architect and deploy secure, scalable PKI infrastructure including Root and Subordinate CAs, CRLs, OCSP responders, and HSMs.

Define certificate policies, trust models, and key usage standards.

Lead PKI upgrades, migrations, and disaster recovery initiatives.

Collaborate with enterprise architects and security teams to align PKI with organizational security strategy.

Certificate Lifecycle Management

Manage full lifecycle of digital certificates : issuance, renewal, revocation, and expiration.

Implement and maintain certificate management automation tools (e.g., Venafi, AppViewX, Keyfactor).

Integrate certificate management with CI / CD pipelines and cloud platforms (Azure, AWS, GCP).

Monitor certificate health and compliance using automated dashboards and alerting systems.

Security & Compliance

Ensure PKI systems adhere to internal security policies and external standards (e.g., NIST, ISO 27001).

Conduct regular audits and vulnerability assessments of PKI infrastructure.

Maintain comprehensive documentation for PKI architecture, processes, and procedures.

Support & Troubleshooting

Serve as the highest level of escalation for PKI-related incidents.

Provide mentorship and technical guidance to Level 1 and Level 2 support teams.

Collaborate with application and infrastructure teams to resolve certificate-related issues.

Key Performance Areas (KPAs)

Successful design and deployment of secure PKI solutions.

Effective implementation of certificate management automation tools.

Reduction in certificate-related outages and incidents.

Compliance with internal and external security standards.

Timely renewal and revocation of certificates across all environments.

Soft Skills & Team Collaboration

Strong communication skills to explain complex PKI concepts to technical and non-technical stakeholders.

Team-oriented mindset with the ability to work cross-functionally with security, infrastructure, and application teams.

Problem-solving attitude with a proactive approach to identifying and resolving issues.

Leadership and mentoring capabilities to guide junior team members and foster knowledge sharing.

Adaptability to work in dynamic environments and manage multiple priorities effectively.

Qualifications

Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.

5+ years of hands-on experience in PKI and certificate management.

Proficiency with automation tools like Venafi, AppViewX, DigiCert, or Keyfactor.

Strong understanding of cryptographic protocols (TLS / SSL, S / MIME, Code Signing).

Experience with cloud-native PKI solutions and integrations.

Relevant certifications (e.g., CISSP, CISM, Microsoft Certified : Azure Security Engineer) are a plus.