A company utilizes Amazon Route 53 for DNS services. The security team has implemented DNS Security Extensions (DNSSEC) to enhance the domain's security posture and now seeks clarification on the responsibility for rotating DNSSEC keys.

What should the network engineer communicate to the security team regarding the party responsible for DNSSEC key rotation?