Cyber Data Protection/PKI Manager
Deloitte · Hartford, CT · 3 wk ago
HybridEngineering$135k–$265k/yrFull-time
Work you'll do
- Serving as a subject matter expert and trusted advisor to clients on strategic and practical data protection and encryption requirements based on new and emerging data risks.
- Advising clients on encryption, decryption, secure key management, and public key infrastructure strategies across cloud, on-premises, and hybrid environments.
- Designing, implementing, and operating technology and process solutions to reduce data risk, including certificate lifecycle management, certificate infrastructure monitoring, and data protection solution deployment.
- Driving day-to-day engagement execution by communicating updates to clients and Deloitte leadership, supporting delivery teams, and tracking timelines to help achieve on-time and on-budget delivery.
- Staying current on emerging encryption technologies and industry trends, while proactively evaluating and recommending tools and solutions to strengthen data security.
Qualifications
- Bachelor’s degree in Cybersecurity, Information Security, Engineering, Computer Science, Information Technology or related field
- 7+ years of professional experience within data protection and information security, which may include Data Discovery, Data Classification and Rights Management, Data Access Governance, Data Loss Prevention, Cloud Access Security Broker, Encryption, Certificate Lifecycle Management, Cloud Security, SaaS Security
- 7+ years with PKI concepts: Deep expertise in PKI architecture and enterprise trust models
- 5+ years leading CLM strategy, design, and implementation using platforms such as AppViewX, Venafi, Keyfactor, DigiCert, or similar
- Advanced knowledge of cryptography, certificate lifecycle processes, key management, HSM integration, and crypto policy enforcement
- Ability to define target-state architecture, integration patterns, and operating models for large-scale environments
- Hands-on understanding of certificate automation across load balancers, WAFs, API gateways, Kubernetes, cloud, web/app servers, and network/security infrastructure
- Experience leading discovery, inventory rationalization, remediation, renewal automation, and compliance monitoring programs
- Strong client leadership skills, including executive stakeholder management, workshop facilitation, roadmap alignment, and decision-making support
- Ability to lead technical workstreams, architects, engineers, and offshore/onshore teams
- Experience translating business, operational, and security requirements into architecture blueprints and implementation plans
- Strong understanding of delivery governance, risk management, dependencies, and quality assurance for enterprise security transformations
- Ability to travel 25-50%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited sponsorship may be available