Senior Cryptographic Key Management Site Reliability Engineer II

Bank of America - Atlanta, GA

posted 4 months ago

Full-time - Mid Level
Atlanta, GA
Credit Intermediation and Related Activities

About the position

At Bank of America, we are committed to helping make financial lives better through the power of every connection. As a Senior Cryptographic Key Management Site Reliability Engineer II, you will play a crucial role in ensuring the reliability, stability, and security of our enterprise key management infrastructure. This position requires a talented and experienced individual who can work closely with our CIOs, engineering, and security teams to maintain highly available and performant Key Management Service (KMS) solutions. Your responsibilities will include maintaining the key management infrastructure to meet user needs, security, and compliance requirements, as well as monitoring and optimizing the performance and scalability of the KMS infrastructure. In this role, you will be responsible for problem-solving and troubleshooting issues related to key management services, including encryption, decryption, and key rotation. You will implement and enforce security best practices to protect sensitive data and cryptographic keys, and collaborate with engineering and other cross-functional teams to implement automated workflows for key lifecycle management. Additionally, you will participate in on-call rotations, respond to incidents in a timely manner, and conduct post-incident reviews to implement preventive measures that minimize the risk of recurrence. Staying up-to-date with industry trends and emerging technologies related to key management and cryptographic standards will also be a key part of your role. This position requires hands-on experience working on Linux/Unix and/or Windows server platforms, as well as automation and scripting experience using Python, Perl, shell scripting, or PowerShell. You will be expected to have at least 1+ years of experience in cryptographic principles and key management, along with a background in Service Reliability, including triage, issue mitigation, and post-problem review. Your ability to work effectively with other functional areas and understand the operational and cultural issues relevant to achieving superior results will be essential for success in this role.

Responsibilities

  • Maintain key management infrastructure to meet user's needs, security, and compliance requirements.
  • Familiarity with Incident and Problem Management systems like Remedy or ServiceNow.
  • Monitor and optimize the performance and scalability of KMS Infrastructure.
  • Troubleshoot and resolve issues related to key management services, including encryption, decryption, and key rotation.
  • Implement and enforce security best practices to protect sensitive data and cryptographic keys.
  • Collaborate with Engineering and other cross-functional teams to implement automated workflows for key lifecycle management.
  • Implement patches, updates, and upgrades as needed.
  • Participate in on-call rotations and respond to incidents in a timely manner.
  • Conduct post-incident reviews and implement preventive measures to minimize the risk of recurrence.
  • Stay up-to-date with industry trends and emerging technologies related to key management and cryptographic standards.

Requirements

  • 1+ years of cryptographic principles and key management experience
  • 1+ years of Service Reliability Background Experience including Triage, Issue Mitigation, Post Problem Review and Problem Management
  • 1+ years hands-on experience with key management systems such as AWS KMS, Azure Key Vault, or Google Cloud KMS
  • Excellent troubleshooting and problem-solving skills
  • Ability to work effectively with other functional areas and understand the operational and cultural issues relevant to achieving superior results.

Nice-to-haves

  • Experience using Utimaco, Thales, Entrust, etc. products for HSM and other Key Management components like legacy Gemalto, Vormetric or CipherTrust Manager
  • Familiarity with DevOps practices and tools (e.g., CI/CD pipelines)
  • Certifications such as AWS Certified Security - Specialty or Certified Kubernetes Administrator (CKA)
  • Knowledge in Quantum Cryptography
  • Java/API - microservices knowledge
  • Verbal, written communication and interpersonal skills
  • Ability to present complex security subjects to internal partners.

Benefits

  • Competitive benefits to support physical, emotional, and financial well-being.
  • Opportunities to learn, grow and make an impact.
  • Flexible working arrangements depending on the role.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service