Overview
Key and Certificate Services Operations Team Lead at DXC Technology
Location: Erskine, United Kingdom. Due to the nature of this role we can only accept applications from UK nationals who are eligible for SC clearance.
Summary
The KCS Operations Team Lead is responsible for managing the lifecycle and operational integrity of cryptographic assets including keys, certificates, and secrets. This role ensures secure provisioning, rotation, storage, and decommissioning of sensitive credentials across enterprise systems, while leading a team of engineers and analysts to maintain compliance and operational excellence.
Key Responsibilities
* Leadership & Team Management: Lead a team responsible for managing enterprise KCS infrastructure; assign tasks, monitor performance, and provide mentorship and training; foster a culture of security, accountability, and continuous improvement.
* Operational Oversight: Oversee the deployment, monitoring, and maintenance of key management systems (KMS), certificate authorities (CA), and secrets management platforms; manage CAs, RAs, OCSP responders, CRLs, and HSMs; ensure timely rotation and renewal of certificates and secrets to prevent outages or vulnerabilities; manage access controls and audit trails for all cryptographic assets.
* Security & Compliance: Ensure KCS operations comply with internal policies and external standards (e.g., NIST, ISO 27001, PCI-DSS); support internal and external audits by maintaining accurate documentation and logs; implement and enforce policies for secure key generation, storage, and destruction.
* Incident Response & Troubleshooting: Act as the escalation point for KCS-related incidents; lead root cause analysis and remediation for certificate expirations, key compromise, or misconfigurations.
* Collaboration & Reporting: Work with DevOps, Infrastructure, and Application Security teams to integrate KCS best practices into CI/CD pipelines and cloud environments; provide regular reports on KCS health, risk posture, and compliance metrics to senior leadership.
Required Qualifications
* 5+ years of experience in cybersecurity or infrastructure operations, focusing on cryptographic asset management
* Strong understanding of PKI, TLS/SSL, HSMs, and secrets management tools
* Proficiency in cryptographic protocols (OCSP, CRL, TSA)
* Hands-on experience with HSMs (e.g., Thales, SafeNet) and PKI platforms (e.g., Entrust, eMudhra)
* Experience with cloud-native KMS solutions (e.g., AWS KMS, Azure Key Vault, GCP Cloud KMS)
* Familiarity with scripting and automation (e.g., Python, PowerShell, Terraform)
* Excellent leadership, communication, and problem-solving skills
What We Will Do For You
* Competitive compensation
* Pension scheme
* DXC Select – comprehensive benefits package (private health/medical insurance, childcare vouchers, gym membership and more)
* Perks at Work (discounts on technology, groceries, travel and more)
* DXC incentives (recognition tools, employee lunches, regular social events, etc.)
At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.
Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process.
#J-18808-Ljbffr