What to expect

• Develop a comprehensive security strategy and design a future-proof security architecture for mission-critical PKI infrastructures.
• Lead and oversee the strategic transition of PKI infrastructure to Post-Quantum Cryptography (PQC), ensuring cryptographic agility while maintaining robust security requirements and controls.
• Establish and uphold a strong PKI governance framework, implementing detailed policies, practices and procedures. Supervise root key ceremonies and other critical CA processes, define resilient incident response and recovery procedures, and develop and maintain certificate policies and practice statements, and other essential documentation.
• Ensure ongoing compliance with relevant regulations and industry standards, support audit reviews and risk assessments, and proactively monitor the evolving threat and regulatory landscape.
• Serve as a subject matter expert on PKI security, governance, and compliance. Provide authoritative guidance and keep the organization abreast of latest trends, technologies, and industry best practices.
• Manage stakeholders and collaborate closely with IT and Operations teams responsible for deploying and operating the PKI infrastructures to ensure alignment with security and governance requirements.

What you need to be successful

• Master’s degree in information technology, computer science, cybersecurity, or a closely related discipline.
• Robust background in cybersecurity, with at least 15 years of professional experience in PKI security architecture and governance, and a proven track record supporting mission-critical infrastructures.
• Extensive experience in developing, implementing, and overseeing comprehensive PKI governance frameworks, policies and processes, and related documentation.
• Expert-level PKI knowledge and demonstrated experience with Certification Authorities, X.509 digital certificates, certificate lifecycle management, certificate revocation lists, key management, hardware security modules, digital signatures, non-repudiation, and associated technologies.
• Thorough understanding and practical application of industry regulations and compliance standards relevant to PKI.
• Proficient in both classic and post-quantum cryptography (PQC), including asymmetric algorithms and related cryptographic protocols and standards.
• Excellent written and verbal communication skills, capable of clearly conveying complex technical concepts to non-specialists and senior stakeholders.
• Demonstrated drive, dynamism, and strong results orientation, with a proven ability to manage high-stakes, mission-critical projects effectively.

What we offer

We give you the freedom to be yourself. We are creating an environment of unique individuals – like you – with different perspectives on the financial industry and the world. A diverse and inclusive environment in which everyone’s voice counts and where you can reach your full potential.

We are committed to an inclusive and accessible recruitment process. If you require a reasonable accommodation related to accessibility during your application or interview, please contact accessibility-Sysgroup@swift.com or indicate this in your application.

Please note that this mailbox is not monitored for general recruitment enquiries and should only be used for accessibility or accommodation-related requests (for example related to vision, hearing or neurodiversity).

All requests are confidential and will not affect your candidacy.

Don’t meet every single requirement? At Swift, we are dedicated to building a workplace where people can bring their full selves and ideas to the team, so if you are excited about this role, we encourage you to apply even if you do not meet every single qualification.