Managing Director, Cryptography

About The Position

Requirements

• Deep expertise in cryptographic technologies, including PKI, TLS, HSMs, and certificate/key lifecycle management.
• Proven leadership in managing large-scale cryptographic programs across complex, global environments.
• Strong understanding of regulatory frameworks (e.g., NIST, ISO 27001, PCI DSS) and their cryptographic requirements.
• Exceptional communication and stakeholder management skills.
• Ability to lead cross-functional teams and influence without direct authority.
• Strong organizational, multi-tasking, and prioritization skills.
• 10+ years of experience in cybersecurity or information protection, with a focus on cryptography, specifically key and certificate management programs.
• 10+ years of experience in leadership roles, including people and program management.
• 8+ years of experience with key and certificate management tools and platforms.
• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.

Nice To Haves

• Experience with cloud-native cryptographic services (e.g., AWS KMS, Azure Key Vault).
• Relevant certifications (e.g., CISSP, CISM, CCSP, GIAC GCLD, or equivalent) are preferred.

Responsibilities

• Lead the enterprise cryptographic strategy, with a focus on key and certificate lifecycle management.
• Define and enforce cryptographic standards, policies, and procedures in alignment with the Information Protection Standard.
• Oversee governance of cryptographic algorithms, cipher suites, and certificate authorities.
• Manage the enterprise-wide inventory of cryptographic assets, including keys, certificates, and HSMs.
• Collaborate with Information Security Officers (ISOs), infrastructure teams, and application owners to ensure secure implementation of cryptographic controls.
• Establish and monitor Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for cryptographic operations.
• Ensure compliance with regulatory requirements and support audit and regulatory engagements.
• Develop and maintain runbooks, SOPs, and automation for cryptographic operations.
• Provide training and awareness programs for teams handling cryptographic materials.
• Serve as the primary escalation point for cryptographic incidents and exceptions.

Benefits

• Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.