Cryptographic Governance Lead

About The Position

Requirements

• Bachelor's Degree Cybersecurity, Mathematics, Cryptography or related field required
• 5+ years Cryptographic governance or related cybersecurity roles required
• Deep understanding of cryptographic algorithms, standards, and protocols (e.g., AES, RSA, TLS) required
• Proven experience with PKI, key lifecycle management, and encryption across cloud, on-prem, and hybrid environments required
• Knowledge of data security platforms such as Splunk, Varonis, and the Thales suite of tools required
• Experience in large, complex organizations and/or healthcare preferred

Nice To Haves

• Master's Degree Cybersecurity, Mathematics, Cryptography or related field preferred
• CISSP Certified Information Systems Security Professional preferred
• Certified Security Software Lifecycle Professional preferred
• Certified Cloud Security Professional preferred

Responsibilities

• Leads the Cryptographic Governance Program within Enterprise Privacy and Security Risk Management (EPSRM).
• Provides subject matter expertise to IT and Cybersecurity capability owners who are responsible for implementing the solutions.
• Works with capability owners, ensuring that cryptographic controls are effectively implemented to protect sensitive data and ensure compliance with regulatory and contractual obligations.
• Design, implement and operationalize the Cryptographic Governance Program, including identifying any staffing needs.
• Analyze monitoring and assessments to identify weaknesses and vulnerabilities; collaborate with capability owners to address root causes.
• Develop and maintain cryptographic policies and standards aligned with industry and regulatory requirements (e.g., encryption, key lifecycle management, certificate management, etc.).
• Define and track KPI’s and metrics to assess risk and maturity; communicate findings to leadership and stakeholders.
• Monitor industry trends and regulatory changes; communicate relevant developments to internal stakeholders.
• Identify emerging and deprecated cryptographic algorithms, coordinate transition planning with impacted teams.
• Maintain expertise in relevant frameworks and standards (e.g. NIST 800-53, FIPS 140).
• Ensure timely remediation of identified weaknesses; assist in removing blockers as needed.
• Document and maintain governance processes and procedures.
• Develop and promote an enterprise cryptographic strategy and use cases for both on-premises and cloud environments.
• Collaborate with capability owners (e.g., security engineering, operations, IT infrastructure, application teams (to ensure solutions meet internal standards.
• Provide guidance on cryptographic techniques such as hashing, key combinations, and digital signatures to ensure data confidentiality and integrity.
• Define requirements for encryption tools and platforms (e.g., AWS KMS, Azure Key Vault, HSMs, and TLS infrastructure).
• Performs other duties as assigned.
• Complies with all policies and standards.

Benefits

• competitive pay
• health insurance
• 401K and stock purchase plans
• tuition reimbursement
• paid time off plus holidays
• a flexible approach to work with remote, hybrid, field or office work schedules