Summary: The KCS Operations Team Lead is responsible for managing the lifecycle and operational integrity of cryptographic assets including keys, certificates, and secrets. This role ensures secure provisioning, rotation, storage, and decommissioning of sensitive credentials across enterprise systems, while leading a team of engineers and analysts to maintain compliance and operational excellence. Key Responsibilities: Leadership & Team Management Lead a team responsible for managing enterprise KCS infrastructure. Assign tasks, monitor performance, and provide mentorship and training. Foster a culture of security, accountability, and continuous improvement. Operational Oversight Oversee the deployment, monitoring, and maintenance of key management systems (KMS), certificate authorities (CA), and secrets management platforms. Manage Certificate Authorities (CAs), Registration Authorities (RAs), OCSP responders, CRLs, and HSMs. Ensure timely rotation and renewal of certificates and secrets to prevent outages or vulnerabilities. Manage access controls and audit trails for all cryptographic assets. Security & Compliance Ensure KCS operations comply with internal policies and external standards (e.g., NIST, ISO 27001, PCI-DSS). Support internal and external audits by maintaining accurate documentation and logs. Implement and enforce policies for secure key generation, storage, and destruction. Incident Response & Troubleshooting Act as the escalation point for KCS-related incidents. Lead root cause analysis and remediation efforts for certificate expirations, key compromise, or misconfigurations. Collaboration & Reporting Work closely with DevOps, Infrastructure, and Application Security teams to integrate KCS best practices into CI/CD pipelines and cloud environments. Provide regular reports on KCS health, risk posture, and compliance metrics to senior leadership. Required Qualifications: 5+ years of experience in cybersecurity or infrastructure operations, with a focus on cryptographic asset management. Strong understanding of PKI, TLS/SSL, HSMs, and secrets management tools. Proficiency in cryptographic protocols (OCSP, CRL, TSA). Hands-on experience with HSMs (e.g., Thales, SafeNet) and PKI platforms (e.g., Entrust, eMudhra). Experience with cloud-native KMS solutions (e.g., AWS KMS, Azure Key Vault, GCP Cloud KMS). Familiarity with scripting and automation (e.g., Python, PowerShell, Terraform). Excellent leadership, communication, and problem-solving skills. What we will do for you: Competitive compensation Pension scheme DXC Select
Our comprehensive benefits package (includes private health/medical insurance, childcare vouchers, gym membership and more) Perks at Work (discounts on technology, groceries, travel and more) DXC incentives (recognition tools, employee lunches, regular social events etc) At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. Were committed to fostering an inclusive environment where everyone can thrive.
TPBN1_UKTJ