AVP - Cryptography PKI Engineer

Purpose of the role

To manage and monitor the banks cryptographic assets, for all use cases, whilst ensuring the confidentiality, integrity, and authenticity of sensitive data, both through BAU support and On-Call support as part of a 24/7 global team. 

Accountabilities

• Collaboration with internal and external customers and stakeholders to understand and identify cryptographic needs across the organisation, sharing best practices including solutions to business applications and processes.
• Execution of security assessments and penetration testing to identify vulnerabilities in cryptographic implementations and procedures and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
• Implementation and monitoring of cryptographic solutions used in various banking applications to ensure they function correctly and meet the Cryptography Standard.
• Development of training content for colleagues to share expertise on cryptographic concepts, best practice and security procedures in line with Standards and Industry regulations Contribute to the creation of technical documentation and specifications related to cryptographic designs and implementations. Provision of subject matter expertise in cryptography methodologies.
• To manage and support the service management of cryptography solutions consumed by the Bank globally, in line with Technology Controls and Standards, including but not limited to Incident/Problem/Change/Vulnerability Management.
• Understanding of industry cryptographic principles including algorithms, protocols and technologies including symmetric and asymmetric keys, digital signatures, key exchange and encryption. Advocate the improvement and implementation of security controls when appropriate.
• Presentation of complex ideas effectively to technical and non-technical audiences at all levels of Leadership.

Assistant Vice President Expectations

• To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions/ business divisions.
• Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes
• If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L – Listen and be authentic, E – Energise and inspire, A – Align across the enterprise, D – Develop others.
• OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes.
• Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues.
• Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda.
• Take ownership for managing risk and strengthening controls in relation to the work done.
• Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function.
• Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy.
• Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc).to solve problems creatively and effectively.
• Communicate complex information. 'Complex' information could include sensitive information or information that is difficult to communicate because of its content or its audience.
• Influence or convince stakeholders to achieve outcomes.

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.

Join us as an AVP Cryptography PKI Engineer and play a critical role in fortifying our cryptography infrastructure by supporting the design, configuration, implementation, and maintenance of robust PKI solutions, to support encryption, authentication, and digital signing processes as part of a 24/7 global operations team. Alongside this you will also be responsible for embedding the necessary elasticity needed to support the modern ecosystem and the post-quantum landscape beyond that. If you’re passionate about security and thrive in a dynamic, collaborative environment, we want you on our team!

To be successful as an AVP Cryptography PKI Engineer , you should have experience with:

• PKI (Public Key Infrastructure) Setting up and managing digital certificates and certificate authorities.
• Experience with Certificate Management platforms  such as Venafi or Keyfactor.
• Experience with HSMs (Hardware Security Modules) like Thales or Entrust for secure key storage.

Some other highly valued skills may include:

• Proficiency in Linux/Unix and Windows, especially for managing cryptographic systems. 
• Compliance Knowledge, Expertise in standards such as NIST, FIPS, ISO27001/27002
• Incident response knowledge of how to handle breaches or compromises related to cryptographic assets.
• Scripting and Programming: Basic scripting or programming skills (e.g., Python, Shell) for automating tasks related to container management
• Automation Tools: Familiarity with automation tools like CI/CD pipelines, templating engines, and orchestration tools to automate container workflows.

You may be assessed on key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen, strategic thinking and digital and technology, as well as job-specific technical skills.

This role would be based out of our Knutsford office.