Security Engineer/Developer

Responsibilities:Responsible for designing, implementing, and maintaining the key management system used to protect sensitive dataEnsure the secure generation, storage, distribution, and rotation of cryptographic keys in compliance with NIST and industry standards following all the best practicesDevelop and implement key management solution based on security policies and procedures to achieve secure key lifecycle managementOversight of the generation, distribution, and secure storage of cryptographic keys, ensuring they are held in accordance to the highest security protocolsBuild, maintain and monitor highly resilient, redundant and secure key management systemsEnsure compliance with internal standards, procedures and regulatory requirements related to key managementParticipate in security audits and assessmentsAvailable to respond to security incidents involving the compromise or corruption of cryptographic key scenariosDevise, implement and document corrective actions to prevent future incidentsWork closely with clients, partners, vendors and security teams to integrate key management practices into broader security initiativesProvide guidance and support on cryptographic practicesCollaborate with operations and other cross-functional teams to implement automated workflows for key lifecycle managementMaintain comprehensive documentation of key management processes, configurations, and incident responsesConduct training sessions and awareness programs for employees on best practices in key management and cryptographic securityStay up-to-date with industry trends and emerging technologies related to key management and cryptographic standardsRequirements:Bachelor's degree in Computer Science, Information Security, or relevant experienceMinimum of 5-10 years of experience in key management, cryptographic security, or a related fieldProficiency in key management systems and tools (e.g., HSMs, KMS, PKI)Strong understanding of cryptographic algorithms and protocolsExperience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS)Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)Proficiency in Linux and Windows operating systemsStrong experience with automation using Perl, Python or PowerShellFamiliarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)Use of monitoring tools i.e. Splunk, Elastic, Prometheus/Grafana stack, ELK, etc.Proficiency in at least one programming language (e.g., Java, Go) and experience with orchestration tools (e.g., Ansible, Terraform)Experience using Utimaco, Thales, Entrust, etc. products for HSM and other Key Management components like legacy Client, Vormetric or CipherTrust ManagerWorking knowledge of JIRA and Agile Scrum routinesFamiliarity with DevOps practices and tools (e.g., CI/CD pipelines)Ability to produce detailed architectural diagrams and technical documentation from business/technical requirementsFamiliarity of Incident and Problem Management systems like Remedy or ServiceNowDesired skills:Advanced degrees or certifications (e.g., CISSP, CISM, CEH)