
How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Cryptography Solutions Architect
We are currently recruiting for a Cryptography Solutions Architect with Venafi experience to join one of our Insurance clients on a 6-month contract.
Inside IR35
Hybrid
Key Responsibilities
- Design and implement cryptographic key management solutions, ensuring key ownership (HYOK, BYOK) is aligned to risk appetite, covering HSMs, cloud key services (Azure Key Vault, AWS KMS, GCP Cloud KMS), KMaaS, and on-premises key stores.
- Shape the key sovereignty and crypto-agility and post-quantum readiness strategies for algorithm deprecation and PQC adoption.
- Align cryptographic controls with regulatory requirements, data sovereignty, data classification & Zero Trust principles, and key sovereignty (BYOK/HYOK/DKE patterns).
- Produce high-quality architecture artefacts: HLDs, LLDs, reference architecture, architecture decision records (ADRs), design patterns, standards, key hierarchy models, TIME models, technology radars to support engineering and platform teams.
- Provide SME leadership to support vendor engagement, RFP and technical evaluations, proof-of-value, and architecture assessment for new products and services.
- Assess the architectural implications of emerging cryptographic technologies and standards (e.g. NIST PQC outputs, homomorphic encryption, MPC), providing informed recommendations on adoption and transition pathways.
- Collaborate with Engineering, Platform & Operations teams to ensure architectural patterns are translated into practical, operable implementations, consistently embedded into development pipelines, CI/CD workflows, and infrastructure-as-code, promoting a secure-by-design and automation-first culture.
- Embed cryptography governance and controls in designs, adhering to Cryptography Standards and aligning with NIST, FIPS, ISO27001/2, SOC2, DORA, HIPPA, PCI DSS, and relevant financial services and privacy regulations.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Experience
- Advanced knowledge of applied cryptography, encryption technologies (including PGP/GPG), key management including cloud-native KMS (Azure/AWS/OCI/GCP), HashiCorp, KMaaS, HSMs, certificates, and security protocols.
- Thorough knowledge and implementation experience automating key lifecycle management, deploying key ownership models (i.e. BYOK/HYOK), key-sovereignty, and key governance tools across hybrid environments (including Azure, AWS, OCI, GCP).
- Experience with encryption-in-use models and key management specifics.
- Proven experience building crypto-agility (library baselines, cipher suite standards, algorithm rollout/deprecation) and PQC awareness with pragmatic migration planning.
- Experience working with cloud infrastructure and microservices (Azure, AWS, OCI), and networking services.
- Deep understanding of cryptographic algorithms, protocols, and standards, including symmetric and asymmetric cryptography, hashing, digital signatures, and key exchange mechanisms.
- Broad knowledge of regulatory and controls/frameworks in industry (NIST, FIPS, ISO, IETF, PCI, SOC, CSF, ISO27001, DORA, GDPR, SABSA/TOGAF).
- Ability to translate cryptographic policy and standards into practical, secure-by-design architecture patterns and engineering-ready solution designs.
- Experience engaging with engineering, platform, security, and risk teams to embed cryptographic best practices across the technology delivery lifecycle.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Desirable Experience
- Familiarity with post-quantum cryptographic algorithms and enterprise hybrid transition approaches.
- Experience with emerging cryptographic techniques i.e. homomorphic encryption, multi-party computation (MPC), threshold cryptography, trusted execution environments (TEEs).
- Familiarity with cryptographic considerations in DevSecOps pipelines, including secrets management, certificate automation, and policy-as-code.
- Thorough knowledge of traditional platform delivery approaches, technologies, and op models, and a thorough appreciation of the capabilities of the major cloud platforms (Azure, AWS, GCP, and OCI).
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location