Enterprise Key Management (EKM) Lead

TRole & responsibilities

• Develop and lead the key management service strategy with an initial focus on lifecycle management of encryption keys (TDE keys, TLS keys), HSM adoption, and future use cases.

• Manage enterprise key management services, ensuring security policy and compliance.

• Build and mentor a key management team, setting functional goals and daily tasks aligned with long-term strategy.

• Enhance and manage key management services across internal infrastructure and cloud environments.

• Collaborate with other teams to adopt new key management services and ensure compliance.

• Research and document technical solutions related to key management.

• Adhere to global security standards and present findings to various project teams and forums.

Skills and Experience:

• Experience in Key Management Life Cycle (generation, storage, rotation, destruction, etc.).

• Proficiency in TLS, PKI, HSMs, KMIP, Digital Certificate Management, and Azure Key Vault.

• Knowledge of Thales CipherTrust Manager and HSMs, as well as FIPS 140-2 compliance.

• Strong understanding of cloud computing architecture and key management systems.

• Proven ability to research new technology and adapt quickly.

Required Qualifications:

• Degree in Computer Science/Engineering or equivalent.

• 10+ years experience in systems engineering, architecture, and integration.

• 5+ years experience in key management and encryption technologies.

Preferred Qualifications:

• Experience leading global, diverse teams.

• Strong communication, analytical, and problem-solving skills.

• Security certifications such as CISSP, CISM, or Security+.

• Ability to work independently or within a team.