About the Company
Zensar is looking for an experienced Cyber Security professional with strong expertise in Public Key Infrastructure (PKI), Certificate Lifecycle Management (CLM), Cloud Security, and Data Protection. The ideal candidate will bring deep technical knowledge across enterprise PKI ecosystems, cloud key management solutions, and security platforms in regulated environments.
About the Role
The role involves designing and implementing enterprise PKI architectures, managing certificate lifecycle operations, and ensuring compliance with security and regulatory standards.
Responsibilities
- Design and implement enterprise PKI architectures using Microsoft ADCS, Keyfactor Command, and AppViewX.
- Manage end-to-end certificate lifecycle operations (issuance, renewal, revocation) across SSL/TLS, S/MIME, Wi-Fi, VPN, and device certificates.
- Integrate and manage Hardware Security Modules (HSMs) such as Thales and SafeNet for secure key storage.
- Deploy and manage Cloud Key Management solutions including Azure Key Vault, AWS KMS, and CipherTrust CCKM.
- Configure and maintain OCSP, CRL/AIA distribution, and high-availability validation frameworks.
- Provide L2/L3 support and troubleshoot issues related to PKI, CLM, workflow automation, and certificate templates.
- Lead certificate discovery, onboarding, and automation initiatives across hybrid and multi-cloud environments.
- Collaborate with infrastructure, networking, and application teams to deliver secure and scalable architectures.
- Implement and support data protection solutions including IBM Guardium and Imperva DAM.
- Ensure compliance with security and regulatory standards (PCI-DSS, GDPR, SOX, etc.).
Qualifications
- Bachelor’s or Master’s degree in Computer Science / IT or related field
Required Skills
- Strong experience in PKI architecture and operations
- Tools: Microsoft ADCS, Keyfactor Command, AppViewX CERT+
- Certificate Lifecycle Management (CLM) automation
- Cloud Security & Key Management (Azure Key Vault, AWS KMS, CipherTrust)
- HSM Integration (Thales, SafeNet)
- Protocols: SSL/TLS, S/MIME, OCSP, CRL
- Experience in encryption, key management, and identity security
- Knowledge of IBM Guardium and Imperva (DAM solutions)
- Familiarity with enterprise environments and multi-cloud architectures
Preferred Skills
- 10–15+ years in Cyber Security with focus on PKI and Data Protection
- Experience in regulated industries and large enterprise environments
- Prior exposure to automation, orchestration tools, and cloud integrations
- Strong troubleshooting and incident management capabilities
Equal Opportunity Statement
Zensar is committed to diversity and inclusivity in the workplace.
