Sec-Ops – Cryptography

About Description

JNR Management Resources Pvt. Ltd., founded in 2003, is a leader in cybersecurity and IT solutions, focused on protecting digital assets and sensitive information in an evolving threat landscape. With nearly two decades of expertise, JNR delivers end-to-end services across cybersecurity, regulatory compliance, hardware security modules (HSM), and data privacy consulting. Our advanced capabilities span SSL/TLS, PKI, MFA, cloud security, digital risk mitigation, and managed services. Known for our results-driven approach, we empower businesses to achieve strong security, compliance, and digital transformation.

Key Responsibilities:

• Implement cryptographic workflows including encryption, signing, decryption, hashing, and key exchange.
• Manage PKI components such as CSRs, key pairs, private keys, certificates, trust stores, CRLs, OCSP, and certificate chains.
• Automate certificate lifecycle operations including issuance, renewal, rotation, and revocation.
• Develop and optimize REST API automation for CLM/TLM platforms.
• Build secure integrations with certificate authorities and PKI platforms.
• Automate certificate provisioning across servers, applications, load balancers, and containers.
• Create API-driven workflows to monitor certificate health, expiration, and policy compliance.
• Integrate CLM/TLM platforms such as Venafi, DigiCert TLM, Sectigo CLM, Keyfactor, and AppViewX.
• Build and manage connectors for CA integration, certificate discovery, inventory, and automated TLS configuration deployment.
• Troubleshoot API issues, PKI policy conflicts, certificate trust problems, and TLS handshake failures.
• Ensure compliance with security standards such as TLS 1.2/1.3, AES, RSA, ECC, SHA-2, NIST, OWASP, and FIPS.
• Enforce secure private key and secret management practices.
• Prepare documentation, API specifications, and architecture diagrams.
• Collaborate with DevSecOps, Cloud, Network, and Engineering teams.

Required Skills & Experience:

• Strong programming or scripting experience in Python, Java, Go, C#, or
• Deep understanding of PKI, TLS/SSL protocols, and certificate trust architecture.
• Knowledge of symmetric and asymmetric cryptography including AES, RSA, and ECC.
• Experience with hashing algorithms such as SHA-256/512 and HMAC.
• Hands-on experience with CLM/TLM platforms including DigiCert TLM, Venafi, Keyfactor, Sectigo CLM, and AppViewX.
• Proficiency in REST API development, integration, and automation.
• Familiarity with tools like OpenSSL, Keytool, and CertUtil.
• Experience with certificate discovery automation.
• Understanding of CA integrations, certificate templates, and enrollment protocols such as ACME, EST, SCEP, and CMPv2.

Preferred Qualifications:

• Experience with KMS/HSM solutions such as AWS KMS, Azure Key Vault, HashiCorp Vault, SafeNet, or Thales.
• Familiarity with Docker, Kubernetes, Istio, and service mesh certificate rotation.
• Knowledge of CI/CD tools such as Jenkins, GitHub Actions, and Ansible.
• Security certifications such as Security+, CEH, or AWS Security.

How to Apply:

Send your resume to

Job Type: Permanent

Benefits:

• Provident Fund

Education:

• Bachelor's (Preferred)

Language:

• English (Preferred)

Work Location: In person