Cryptography Engineer Lead

**Job Overview:**

We are seeking a skilled Engineering Lead to join our team and lead the design, development, and maintenance of automation solutions that enhance the security, efficiency, and scalability of our enterprise cryptographic infrastructure.

The ideal candidate will have expertise in cryptographic key and certificate management, as well as experience with secure automation, scripting, API development, and integrating cryptographic solutions within financial or highly regulated environments.

This role will focus on integrating key management systems (KMS), public key infrastructure (PKI), and hardware security modules (HSMs) with enterprise applications, cloud environments, IoT, and DevSecOps workflows.

Key Responsibilities:

• Lead a team of developers and engineers in designing and implementing cryptographic automation and integrations solutions.
• Provide technical direction and mentorship, ensuring best practices in secure coding, automation, and cryptographic integrations.
• Collaborate with senior stakeholders, including security architects, compliance teams, and DevSecOps leads to define and drive key management strategies.
• Design and implement integrations between cryptographic key and certificate management systems and enterprise applications, cloud platforms, and security tools.
• Develop and maintain APIs, microservices, and automation scripts to streamline cryptographic operations.
• Enable seamless integration with multi-cloud key management services (AWS KMS, Azure Key Vault, OCI KMS).
• Collaborate with security architects, application teams, and DevSecOps engineers to embed encryption and certificate management into CI/CD pipelines.
• Automate key lifecycle processes such as key generation, rotation, distribution, revocation, and decommissioning.
• Implement certificate automation solutions (ACME protocol, automated issuance/renewal via API-driven PKI).
• Build monitoring and alerting mechanisms to detect cryptographic anomalies and improve operational efficiency.
• Ensure automation and integrations align with cryptographic policies, compliance, and regulations (PCI DSS, GDPR, FIPS 140-2/3), and security best practices.
• Work closely with risk and compliance teams to provide audit trails and access control mechanisms for key and certificate operations.
• Assist in vulnerability management and patching of cryptographic components and automation workflows.
• Troubleshoot integration and automation issues, ensuring high availability and reliability of cryptographic services.