This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Bank of America - Jacksonville, FL
posted 2 months ago
Full-time - Mid Level
Jacksonville, FL
Credit Intermediation and Related Activities
About the position
The Cryptographic Engineer II at Bank of America is responsible for designing, implementing, and maintaining the key management system that protects sensitive data. This role involves ensuring secure generation, storage, distribution, and rotation of cryptographic keys in compliance with NIST and industry standards. The engineer will also create infrastructure tools, develop templates and playbooks, and promote a culture of innovation and continuous improvement within the organization.
Responsibilities
- Provides subject matter expertise and consulting services on a range of technologies and assists Technical Analysts and Infrastructure Engineers to ensure that technology solutions comply with enterprise system design and engineering standards
- Assists with translating business requirements into technical definitions, reference models, blueprints, and playbooks for deployment in compliance with architecture standards and policies
- Assists in the evaluation of reference models, blueprints and playbooks to ensure they are fit for purpose
- Develops software solutions to address manual and repeatable work or inefficient processes
- Conducts on-site evaluations of third-party products being considered for firm adoption
- Promotes an inclusive and healthy working environment and helps to resolve organizational impediments/blockers
- Contributes to the creation/selection of functional and non-functional product evaluation requirements within and across domains
- Develop and implement key management solution based on security policies and procedures to achieve secure key lifecycle management
- Oversight of the generation, distribution, and secure storage of cryptographic keys, ensuring they are held in accordance to the highest security protocols
- Build, maintain and monitor highly resilient, redundant and secure key management systems
- Ensure compliance with internal standards, procedures and regulatory requirements related to key management. Participate in security audits and assessments
- Available to respond to security incidents involving the compromise or corruption of cryptographic key scenarios. Devise, implement and document corrective actions to prevent future incidents
- Work closely with clients, partners, vendors and security teams to integrate key management practices into broader security initiatives. Provide guidance and support on cryptographic practices
- Maintain comprehensive documentation of key management processes, configurations, and incident responses
- Conduct training sessions and awareness programs for employees on best practices in key management and cryptographic security
- Stay up-to-date with industry trends and emerging technologies related to key management and cryptographic standards
Requirements
- 6+ years of experience in key management, cryptographic security, or a related field
- Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI)
- Strong understanding of cryptographic algorithms and protocols
- Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS)
- Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)
- Proficiency in Linux and Windows operating systems
- Strong experience with automation using Perl, python or PowerShell
- Use of monitoring tools i.e. Splunk, Elastic, Prometheus/Grafana stack, ELK, etc.
- Proficiency in at least one programming language (e.g., Java, Go) and experience with orchestration tools (e.g., Ansible, Terraform)
- Experience using Utimaco, Thales, Entrust, etc. products for HSM and other Key Management components like legacy Gemalto, Vormetric or CipherTrust Manager
- Working knowledge of JIRA and Agile Scrum routines
- Familiarity with DevOps practices and tools (e.g., CI/CD pipelines)
Nice-to-haves
- Bachelor's degree in Computer Science, Information Security, or relevant experience
- Advanced degrees or certifications (e.g., CISSP, CISM, CEH)
- Strong analytical and problem-solving skills
- Excellent communication and interpersonal skills
- Self motivated and able to work with minimal supervision as part of a team
- Detail-oriented with a strong commitment to maintaining high-security standards
Benefits
- Competitive benefits to support physical, emotional, and financial well-being
- Opportunities for learning and growth
- Flexible working arrangements
