Develop, review, and update PKI and Cryptography policies and procedures to ensure they align with industry best practices and regulatory requirements.
Keep up-to-date with industry cryptography algorithms and protocols to ensure modern and future proof solutions are designed. (PQC, FIDO2, TLS, ZKP, RFC,…)
Collaborate with business owners to identify and define PKI and Cryptography policy needs.
Provide consultancy to certificate owners and key custodians on the implementation of PKI and Cryptography policies.
Responsible for the design and architecture of PKI & Cryptography solutions.
Act as subject matter expert in the PKI & Cryptography domain.
Become application owner of one or multiple products or technologies.
You will join the Enterprise Cryptography team, consisting of experienced PKI Policy veterans and engineers with a ‘can-do’ attitude.
Technical skills
Good knowledge of industry best practices and standards in PKI and Cryptography (NIST, BSI, ANSSI, FIPS, RFC, DORA,…)
Understanding of the security concepts typical to Cryptography and PKI (i.e. Root and Issuing CA’s, Certificate and Key management, HSM and smart cards).
Experience with the design and implementation of Public Key Infrastructure.
Good knowledge of (m)TLS, S/MIME, FIDO and other Cryptography protocols.
Good knowledge of NIST 1800-16, WebTrust and FIPS 140-3.
Good knowledge of hardware key containers (HSM, smart card, TPM,…).
Good knowledge of Certificate Authority software (Microsoft, Nexus or EJBCA,…).
Good knowledge of cryptographic libraries (OpenSSL, Bouncy Castle, MS CNG, pyca/cryptography,…).
Ability to integrate on different technology stacks (Windows, Linux, C/C++, .Net, Java,…).
Knowledge of Git.
Platforms: Linux & Windows OS.
Knowledge of the 7 layers of the OSI model.
Excellent written and verbal communication skills.
