Job Description
Purpose of the role
To manage and monitor the banks cryptographic assets, for all use cases, whilst ensuring the confidentiality, integrity, and authenticity of sensitive data, both through BAU support and On-Call support as part of a 24/7 global team.
Accountabilities
* Collaboration with internal and external customers and stakeholders to understand and identify cryptographic needs across the organisation, sharing best practices including solutions to business applications and processes.
* Execution of security assessments and penetration testing to identify vulnerabilities in cryptographic implementations and procedures and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
* Implementation and monitoring of cryptographic solutions used in various banking applications to ensure they function correctly and meet the Cryptography Standard.
* Development of training content for colleagues to share expertise on cryptographic concepts, best practice and security procedures in line with Standards and Industry regulations Contribute to the creation of technical documentation and specifications related to cryptographic designs and implementations. Provision of subject matter expertise in cryptography methodologies.
* To manage and support the service management of cryptography solutions consumed by the Bank globally, in line with Technology Controls and Standards, including but not limited to Incident/Problem/Change/Vulnerability Management.
* Understanding of industry cryptographic principles including algorithms, protocols and technologies including symmetric and asymmetric keys, digital signatures, key exchange and encryption. Advocate the improvement and implementation of security controls when appropriate.
* Presentation of complex ideas effectively to technical and non-technical audiences at all levels of Leadership.
Director Expectations
* To manage a business function, providing significant input to function wide strategic initiatives. Contribute to and influence policy and procedures for the function and plan, manage and consult on multiple complex and critical strategic projects, which may be business wide..
* They manage the direction of a large team or sub-function, leading other people managers and embedding a performance culture aligned to the values of the business. Or for an individual contributor, they lead organisation wide projects and act as deep technical expert and thought leader, identifying new ways of working and collaborating cross functionally. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions..
* Provide expert advice to senior functional management and committees to influence decisions made outside of own function, offering significant input to function wide strategic initiatives.
* Manage, coordinate and enable resourcing, budgeting and policy creation for a significant sub-function.
* Escalates breaches of policies / procedure appropriately.
* Foster and guide compliance, ensure regulations are observed that relevant processes in place to facilitate adherence.
* Focus on the external environment, regulators, or advocacy groups to both monitor and influence on behalf of Barclays, when appropriate.
* Demonstrate extensive knowledge of how the function integrates with the business division / Group to achieve the overall business objectives.
* Maintain broad and comprehensive knowledge of industry theories and practices within own discipline alongside up-to-date relevant sector / functional knowledge, and insight into external market developments / initiatives.
* Use interpretative thinking and advanced analytical skills to solve problems and design solutions in often complex/ sensitive situations.
* Exercise management authority to make significant decisions and certain strategic decisions or recommendations within own area.
* Negotiate with and influence stakeholders at a senior level both internally and externally.
* Act as principal contact point for key clients and counterparts in other functions/ businesses divisions.
* Mandated as a spokesperson for the function and business division.
All Senior Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L – Listen and be authentic, E – Energise and inspire, A – Align across the enterprise, D – Develop others.
All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.
Head of Cryptography
We are seeking a Director of Cryptography to lead the design, implementation, and governance of our organisations cryptographic systems and standards. This role is responsible for defining cryptographic architecture, ensuring compliance with global security regulations, driving strategy and guiding research and innovation across the discipline.
The ideal candidate combines deep technical expertise in modern cryptographic methods with strong leadership capabilities, risk management experience, and a forward-looking perspective on emerging security threats.
Key Responsibilities:
Strategy & Leadership
* Define and execute the organisation's cryptographic strategy aligned with business objectives.
* Lead and mentor a team of cryptography engineers
* Establish cryptographic governance frameworks, standards, and best practices.
* Provide executive-level guidance on cryptographic risk and mitigation strategies.
Architecture & Engineering
* Design and oversee implementation of cryptographic protocols and systems (HSM, key management, PKI).
* Ensure key lifecycle management, including generation, distribution, rotation, storage, and revocation.
* Evaluate and select cryptographic security tooling.
Compliance & Risk Management
* Ensure compliance with global regulations and standards (e.g., GDPR, FIPS, ISO 27001, NIST)
* Conduct cryptographic risk assessments and threat modelling.
* Oversee audits and coordinate with regulatory bodies.
Research & Innovation
* Stay current with advancements in post-quantum cryptography and emerging threats.
* Lead internal research initiatives and collaborate with academic or industry partners.
* Drive adoption of quantum-resistant cryptographic algorithms and zero-trust architectures.
Key Competencies
* Strategic thinker with strong executive presence.
* Exceptional problem-solving and analytical capabilities.
* Effective communicator able to translate complex cryptographic concepts for non-technical stakeholders
* High integrity with a strong ethical foundation
* Ability to operate effectively in fast-paced, high-security environments
Deep knowledge of:
* Symmetric and asymmetric cryptography
* Public Key Infrastructure (PKI)
* Digital signatures and certificate management
* Key management systems
* Cryptographic protocols (TLS, SSH)
* Experience with hardware security modules (HSMs)
* Demonstrated leadership and team-building experience.
* Experience with post-quantum cryptography and zero-knowledge proofs.