Lead Cryptographic Key Manager
CurrentResponsible for all aspects of the cryptographic assets and cryptographic key management process for the Domain Name System Security Extensions (DNSSEC) Root Key Signing Key (KSK).Summary of key responsibilities:○ Manage cryptographic assets and cryptographic key management processes, includingthose for the KSK○ Manage certificate authority hierarchy and certificate profiles, including X.509 CertificateAuthority (CA)○ Manage the lifecycle of certificates and cryptographic keys○ Write, review, edit, approve and maintain all cryptography key security managementrelated documentations and policies, standards and procedures of these processes○ Plan and execute KSK management ceremonies as needed, including logistical coordi-nation○ Manage and test disaster recovery plans for key management operations○ Propose process improvements to maintain maximum security and maintain continuingoperations○ Minimize risks associated with managing cryptographic keys, including coordination ofphysical security○ Prepare responses to third-party audits for key management functions○ Function as the point-of-contact for cryptographic key management security and policymanagement issues○ Attend and participate (e.g., provide briefings) in meeting to discuss execution of its keymanagement responsibilities, and regional and international Internet technical forums and network operations group meetings