Cyber Data Protection/PKI Manager
Indexed description
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Manager, Strategy, Growth, and Transformation on the Cyber Strategy & Transformation team, you will be responsible for...
- Serving as a subject matter expert and trusted advisor to clients on strategic and practical data protection and encryption requirements based on new and emerging data risks.
- Advising clients on encryption, decryption, secure key management, and public key infrastructure strategies across cloud, on-premises, and hybrid environments.
- Designing, implementing, and operating technology and process solutions to reduce data risk, including certificate lifecycle management, certificate infrastructure monitoring, and data protection solution deployment.
- Driving day-to-day engagement execution by communicating updates to clients and Deloitte leadership, supporting delivery teams, and tracking timelines to help achieve on-time and on-budget delivery.
- Staying current on emerging encryption technologies and industry trends, while proactively evaluating and recommending tools and solutions to strengthen data security.
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to mentor and provide clear guidance to others
Qualifications
Required:
- Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science, Information Technology or related field
- 7+ years of professional experience within data protection and information security, which may include Data Discovery, Data Classification and Rights Management, Data Access Governance, Data Loss Prevention, Cloud Access Security Broker, Encryption, Certificate Lifecycle Management, Cloud Security, SaaS Security
- 7+ years with PKI concepts: Deep expertise in PKI architecture and enterprise trust models
- 5+ years leading CLM strategy, design, and implementation using platforms such as AppViewX, Venafi, Keyfactor, DigiCert, or similar
- Advanced knowledge of cryptography, certificate lifecycle processes, key management, HSM integration, and crypto policy enforcement
- Ability to define target-state architecture, integration patterns, and operating models for large-scale environments
- Hands-on understanding of certificate automation across load balancers, WAFs, API gateways, Kubernetes, cloud, web/app servers, and network/security infrastructure
- Experience leading discovery, inventory rationalization, remediation, renewal automation, and compliance monitoring programs
- Strong client leadership skills, including executive stakeholder management, workshop facilitation, roadmap alignment, and decision-making support
- Ability to lead technical workstreams, architects, engineers, and offshore/onshore teams
- Experience translating business, operational, and security requirements into architecture blueprints and implementation plans
- Strong understanding of delivery governance, risk management, dependencies, and quality assurance for enterprise security transformations
- Ability to travel 25-50%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited sponsorship may be available
- Familiarity with crypto-agility strategies and post-quantum cryptography readiness
- Knowledge of adjacent domains such as IAM, PAM, secrets management, zero trust, and machine identity management
- Experience with DevSecOps integration, CI/CD pipeline enablement, and API-driven automation
- Working knowledge of Python, PowerShell, Bash, REST APIs, or infrastructure automation patterns
- Understanding of cloud-native certificate and key services in AWS, Azure, and GCP
- Awareness of regulatory, audit, and policy requirements impacting cryptographic controls
- Experience with operating model design, service transition, and support model definition
- Ability to support business development, solutioning, estimation, staffing, and proposal writing
- Strong mentoring capability for junior practitioners and emerging technical leads
- Comfort with executive-level reporting, issue escalation, and steering committee discussions
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search