Cybersecurity Engineer--Cryptography

Truist Financial - Raleigh, NC

posted 5 months ago

Part-time,Full-time - Mid Level
Raleigh, NC
Credit Intermediation and Related Activities

About the position

As a Cryptographic Engineer, you will be responsible for designing and supporting the implementation of robust encryption solutions to protect sensitive data across our organization, both on-premise and in cloud environments. This role is critical in ensuring the security of our data and will involve close collaboration with cross-functional teams to align cryptographic strategies with business objectives and regulatory requirements. You will leverage your deep understanding of encryption technologies, key management, cryptographic protocols, and best practices for data security and cloud-based cryptography to contribute to our cryptographic strategy and roadmaps. Your primary responsibilities will include developing and maintaining encryption strategies and policies to safeguard sensitive data at rest, in transit, and in use. You will design, implement, enhance, maintain, and test encryption solutions for various systems and applications used throughout the enterprise, with a particular focus on cloud platforms. Evaluating cryptographic protocols and algorithms to select the most appropriate ones based on security requirements and industry standards will be a key part of your role. You will also provide a fresh perspective on existing solutions, participate in resolving complex problems, and exercise judgment based on the analysis of multiple sources of information. Collaboration with security architects will be essential to review and enhance the overall security architecture, particularly concerning encryption-related controls and mechanisms. You will ensure that all encryption solutions comply with relevant regulatory requirements and industry standards, conduct risk assessments, and implement mitigation strategies to address encryption-related risks. Additionally, you will provide expertise in encryption-related incident response and forensic investigations, assisting in identifying root causes and implementing remediation measures. Leading cybersecurity projects with manageable risks and resource requirements will also be part of your responsibilities, along with conducting training sessions and awareness programs to educate employees on encryption best practices and promote a culture of security awareness.

Responsibilities

  • Develop and maintain encryption strategies and policies to safeguard sensitive data at rest, in transit, and in use.
  • Design, implement, enhance, maintain, and test encryption solutions for various systems and applications used throughout the enterprise, focused on cloud platforms.
  • Evaluate cryptographic protocols and algorithms to select the most appropriate ones based on security requirements and industry standards.
  • Provide a new perspective on existing solutions, participate in the resolution of complex problems and exercise judgment based on the analysis of multiple sources of information.
  • Collaborate with security architects to review and enhance the overall security architecture, with a focus on encryption-related controls and mechanisms.
  • Ensure that encryption solutions comply with relevant regulatory requirements and industry standards.
  • Conduct risk assessments and implement mitigation strategies to address encryption-related risks.
  • Provide expertise in encryption-related incident response and forensic investigations, assisting in identifying root causes and implementing remediation measures.
  • Lead cybersecurity projects with manageable risks and resource requirements; play a significant role in larger, more complex initiatives.
  • Conduct training sessions and awareness programs to educate employees on encryption best practices and promote a culture of security awareness.

Requirements

  • Bachelor's degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience.
  • In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.
  • Previous experience in planning and managing IT projects.

Nice-to-haves

  • Five years of experience in the solution designing and implementation of encryption solutions in large enterprise environments.
  • Strong understanding of relevant regulations and compliance frameworks (e.g., NIST, FIPS, ISO/IEC, PCI DSS).
  • In-depth knowledge of cloud-based cryptography including but not limited to cloud key management, cloud storage encryption, cloud certificate management, cloud HSM management and cloud secrets management.
  • Experience with Multi-Cloud environments and Cloud Security tools such as AWS CloudTrail, AWS Key Management Service (AWS KMS), AWS CloudHSM, AWS Certificate Manager, AWS Secrets Manager, Azure Key Vault, Microsoft Sentinel, Microsoft Cloud Defender, as well as scripting and REST APIs for automation.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Disability insurance
  • Accidental death and dismemberment insurance
  • Tax-preferred savings accounts
  • 401k plan
  • Vacation days (minimum of 10 days)
  • Sick days (minimum of 10 days)
  • Paid holidays
  • Defined benefit pension plan (depending on position and division)
  • Restricted stock units (depending on position and division)
  • Deferred compensation plan (depending on position and division)

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service