Cyber Data Protection/PKI Manager
Deloitte · Dayton, OH · 3 days ago
Hybrid$135k–$265k/yrFull-time
Work you'll do
- Serving as a subject matter expert and trusted advisor to clients on strategic and practical data protection and encryption requirements based on new and emerging data risks.
- Advising clients on encryption, decryption, secure key management, and public key infrastructure strategies across cloud, on-premises, and hybrid environments.
- Designing, implementing, and operating technology and process solutions to reduce data risk, including certificate lifecycle management, certificate infrastructure monitoring, and data protection solution deployment.
- Driving day-to-day engagement execution by communicating updates to clients and Deloitte leadership, supporting delivery teams, and tracking timelines to help achieve on-time and on-budget delivery.
- Staying current on emerging encryption technologies and industry trends, while proactively evaluating and recommending tools and solutions to strengthen data security.
Qualifications
- Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science, Information Technology or related field.
- 7+ years of professional experience within data protection and information security, which may include Data Discovery, Data Classification and Rights Management, Data Access Governance, Data Loss Prevention, Cloud Access Security Broker, Encryption, Certificate Lifecycle Management, Cloud Security, SaaS Security.
- 5+ years leading CLM strategy, design, and implementation using platforms such as AppViewX, Venafi, Keyfactor, DigiCert, or similar.
- Advanced knowledge of cryptography, certificate lifecycle processes, key management, HSM integration, and crypto policy enforcement.
- Hands-on understanding of certificate automation across load balancers, WAFs, API gateways, Kubernetes, cloud, web/app servers, and network/security infrastructure.
- Strong client leadership skills, including executive stakeholder management, workshop facilitation, roadmap alignment, and decision-making support.
- Experience leading technical workstreams, architects, engineers, and offshore/onshore teams.
- Strong understanding of delivery governance, risk management, dependencies, and quality assurance for enterprise security transformations.
Preferred
- Familiarity with crypto-agility strategies and post-quantum cryptography readiness.
- Experience with DevSecOps integration, CI/CD pipeline enablement, and API-driven automation.
- Experience with operating model design, service transition, and support model definition.
- Understanding of cloud-native certificate and key services in AWS, Azure, and GCP.
- Experience with Python, PowerShell, Bash, REST APIs, or infrastructure automation patterns.
- Experience with secrets management, zero trust, and machine identity management.
- Experience with business development, solutioning, estimation, staffing, and proposal writing.
- Strong mentoring capability for junior practitioners and emerging technical leads.
- Comfort with executive-level reporting, issue escalation, and steering committee discussions.