Senior Manager – Security Encryption and Certificate Services – People Leader

Senior Manager – Security Encryption and Certificate Services – People Leader

Requirements

• 5+ years of people management within cybersecurity.
• 8+ years of hands-on experience in network security, data security, and/or other cybersecurity-related controls and technologies.
• Bachelor’s Degree in computer science or related field highly preferred.
• Ability to foster collaborative, open, working relationships with technology groups and other stakeholders, including vendor relationships.
• Clear communication skills and ability to interact effectively at multiple levels of an organization, and to influence leadership (Including translating technical information based on specific audiences).
• Experience managing multiple high-visibility and high-impact enterprise cybersecurity projects with cross-functional teams while maintaining superior results including planning, development and management of technical requirements, design, testing and deployment of security solutions.
• Strong understanding of cryptography and Public Key Infrastructure (PKI) principles.
• Expertise in PKI technologies like Microsoft Active Directory Certificate Services (AD CS), Entrust, or other commercial PKI solutions.
• Experience with managing Hardware Security Modules (HSMs).
• Extensive knowledge of symmetric and asymmetric encryption algorithms, digital signatures, hashing functions, key exchange protocols, and secure random number generation.

Responsibilities

• Maintain, lead, and challenge the Public Key Infrastructure (PKI) & Cryptography Team to bring continuous advancement and maturity.
• Lead team and work with partners to architect and deploy PKI infrastructure, including Certificate Authorities (CAs), Registration Authorities (RAs), and Hardware Security Modules (HSMs).
• Manage the issuance and management of digital certificates for users, servers, and devices across the organization.
• Conduct regular security assessments and audits of PKI systems to identify vulnerabilities and potential risks.
• Work with other IT teams to integrate PKI solutions into existing systems and applications.
• Design and manage key generation, distribution, and rotation processes to maintain the security of cryptographic keys.
• Ensure the team is analyzing existing cryptographic systems to identify potential weaknesses and vulnerabilities, and develop mitigation strategies to address them.
• Ensure adherence to relevant industry standards and regulations (e.g., FIPS 140-2) for cryptographic implementations.
• Conduct security reviews of cryptographic systems to identify potential vulnerabilities and weaknesses.
• Maintain close ties to various stakeholders, developers, and engineers across the company, ensuring the services we create meet their needs as products evolve.
• Communicate extensively with Data Protection Product and engineering teams across the organization.
• Drive complex technical initiatives to full delivery leveraging knowledge of Cyber security practices, software engineering principles, agile frameworks, and customer engagement.
• Lead team to design, build, and maintain infrastructure to meet the organization’s requirements and ensure high availability.
• Applying adept understanding and experience with systems automation platforms and technologies.

Preferred Qualifications

• Experience in Cloud Security within the Financial Services sector.
• Experience with native tooling in Public Cloud offerings as well as third party security controls.
• Multiple certifications in cybersecurity and data protection cybersecurity highly preferred (CISSP, GIAC, CISM, CCSP, CISA)