Job Description

The role is responsible to lead the design, implementation, and operational governance of secure cryptographic key lifecycle processes. He/she will ensure that cryptographic keys and related systems are securely managed, compliant with regulatory and industry standards, and aligned with organizational risk and security strategies. He/she requires deep technical expertise in cryptography and key management systems, strong leadership skills, and the ability to interface with cross‑functional teams including security, engineering, risk, audit, and compliance.

• Lead the development and execution of the enterprise cryptographic key management strategy.
• Define and enforce policies, standards, and procedures for managing the cryptographic key lifecycle
• Provide leadership and direction to technical teams supporting cryptographic services.
• Design and maintain secure cryptographic key management solutions, including Hardware Security Modules (HSMs), key vaults, and cloud‑native key management systems (AWS KMS, Azure Key Vault, Google Cloud KMS, etc.).
• Ensure solutions support encryption and signing services for applications, databases, cloud platforms, and infrastructure.
• Ensure compliance with relevant industry frameworks and standards
• Partner with compliance, audit, and risk teams to support reviews, audits, and assurance activities.
• Maintain detailed documentation for cryptographic controls, configurations, and decisions.
• Define monitoring and alerting for key management platforms to detect anomalies or misuse.
• Lead investigations and remediation efforts for cryptography or key‑related incidents.
• Conduct periodic key usage reviews and risk assessments.
• Work closely with Security Engineering, DevOps, Software Development, Cloud Architecture, and Infrastructure teams to integrate cryptographic controls.
• Advise teams on secure cryptographic algorithms, protocol selection, and implementation best practices.
• Promote cryptography and key management awareness across the organization.
• Perform any other duties assigned to by line manager related to the nature of the work.
• Enforce, incorporate, and comply with all necessary controls and related information security policies, procedures, practices, training, reporting, personal due diligence, and vigilance, within departmental/unit activities and operations.

Preferred Qualifications

• A tertiary-level qualification from an internationally recognized institution
• Industry-recognized certifications such as CISSP, CISM, CKA, CCSP, or equivalent.

Years & Nature of Experience

• Recommended 5 to 7 years of equivalent experience in Computer Science, Information Security, Engineering, or a related field.
• Proven experience as a Cryptographic Key Management lead, Security Manager, or Security Architect with a focus on encryption/key lifecycle.
• Strong knowledge of cryptographic principles, algorithms (AES, RSA, ECC, etc.), and secure key storage.
• Experience with full certificate life cycle management process and technologies.
• Experience with visa online and visa developer key, certificate management process.
• Hands‑on experience with HSMs, PKI, key vaults, cloud key management services, and encryption tooling.
• Familiarity with security standards and compliance requirements (e.g., NIST, ISO, PCI‑DSS, FIPS).
• Experience leading technical teams and delivering secure solutions at scale.
• Excellent communication and stakeholder management skills.

Technical Competencies

• Cryptography & Key Management
• Security Architecture
• Incident Response
• Risk Management

Behavioural Competencies

• Analytical Thinking
• Complex Reasoning
• Communication
• Trust & Transparency
  

D360 Bank is a shariah-compliant digital bank that aims to provide the best financial experience in theKingdom. Our Vision: To reinvent finance through innovation & technology making it convenient,accessible & fair to all.