This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Senior Cryptographic Engineer
$150,000 - $190,700/Yr
Bank of America - Charlotte, NC
posted 2 months ago
Full-time - Senior
Charlotte, NC
Credit Intermediation and Related Activities
About the position
The Senior Cryptographic Engineer at Bank of America is responsible for leading the design, implementation, and maintenance of critical key management systems that protect sensitive data. This role involves overseeing the secure generation, storage, distribution, and rotation of cryptographic keys, ensuring compliance with industry standards such as NIST, FIPS, and GDPR. The engineer will also facilitate the deployment of complex technical solutions and drive a culture of innovation and continuous improvement within the organization.
Responsibilities
- Serves as a consultant on a broad range of technologies, platforms, and vendor offerings to drive targeted business outcomes.
- Develops software solutions to address manual and repeatable work or inefficient processes and contributes to the technology strategy for end-to-end engineering solutions.
- Translates business requirements into technical definitions, reference models, blueprints, and playbooks for deployment in compliance with architecture standards and policies.
- Participates in various steering committees for technical and infrastructure service domains.
- Leads the evaluation of reference models, blueprints and playbooks to ensure they are fit for purpose.
- Mentors and guides team members to ensure system design technology solutions comply with enterprise system design and engineering standards.
- Creates an inclusive and healthy working environment and helps to resolve organizational impediments/blockers.
- Independently leads or manages small work efforts providing guidance to involved parties.
- Interacts with senior management to present, solicit feedback and/or debate on subjects pertaining to the primary role.
- Participates and provides feedback in the development of internal and external policies and procedures.
- Ensures compliance with internal standards, procedures and regulatory requirements related to key management.
- Available to respond to security incidents involving the compromise or corruption of cryptographic key scenarios.
- Maintains comprehensive documentation of key management processes, configurations, and incident responses.
- Conducts training sessions and awareness programs for employees on best practices in key management and cryptographic security.
Requirements
- 7+ years of Cryptographic engineering and architecture experience that includes designing, implementing and maintaining complex enterprise scale solutions and security systems.
- Overarching broad and deep technical knowledge of cryptographic standards i.e. FIPS, NIST and GDPR.
- Hands-on experience implementing security services on AWS, Azure and/or GCP.
- Extensive experience and advanced knowledge implementing key management systems i.e. HSMs and other hardware/software appliances.
- Extensive knowledge of KMS best-practices, latest security threats/trends and mitigation thereof.
- Advanced scripting experience and capabilities using python, perl, java and/or powershell.
- Strong working knowledge on Linux and windows systems and familiarity with DNS, networks, DMZs, firewalls, network security zones and IPv6.
- Deep, in-depth working knowledge of Kerberos and NTLM authentication, MFA, SSO and federation technologies.
- Experience performing large scale security implementation, upgrades, migrations, transitions and consolidation of IM and Cryptographic solutions.
- Excellent communication skills, including proven experience effectively communicating technical challenges and solutions to peers, customers and senior management.
Nice-to-haves
- Certifications of Microsoft Azure Security Engineer (AZ-500) or AWS Certified Security Specialty.
- Knowledge of managing network appliances in both form factors (hardware and virtual).
Benefits
- Industry-leading benefits
- Access to paid time off
- Resources and support for employees to make a genuine impact
- Discretionary incentive eligibility based on performance
