QUALIFICATIONS/REQUIREMENTS:

• Bachelor’s degree in Computer Science/Engineering or related field OR High School Diploma/GED and a minimum of 4 years or experience in Technology with a minimum of 3 years in Information Security
• Certifications in audit, big data, cloud, cybersecurity, governance, information security, privacy, risk preferred; AWS, Cloudera, GCP, GIAC, ISC2, ISACA
• Excellent oral communication and writing skills. Adept and presenting complex topics, influencing and executing with timely / actionable follow-through
• Proficient hands on technical expertise with API, AWS, Cloudera, Docker, encryption,

HashiCorp Vault, Kubernetes, Java, Linux, Perl, PKI, Protegrity, Python, secrets management, Thales/Vormetric, tokenization is strongly preferred

• Proven ability to organize/manage multiple priorities coupled with the flexibility to quickly adapt to ever-changing business needs
• Strong analytical and problem-solving skills with the ability to convert information into practical deliverables. Uses rigorous logic and methods to solve difficult problems.

ROLE SUMMARY/PURPOSE:

The Analyst, Information Security Cryptography will play a key role in safeguarding the organizations systems, networks, and data. The position is responsible for aiding in the design and build of Information Security capabilities, participate in the management/operations of these capabilities, alongside supporting technologies. In addition, this role will be responsible for acting as a trusted resource for other analysts in the organization.

ESSENTIAL RESPONSIBILITIES:

• Implement and provide ongoing DevSecOps/Operations support for a global secrets management service using Certificate Lifecycle Management/PKI solutions and various data protection technologies
• Provide ongoing DevSecOps/Operations support for a global Information Security Cryptography Services program, which includes encryption, key/secrets management, tokenization, and various data protection technologies
• Participate as one of several technical leads on team of secrets management engineers
• Participate in authoring, editing, providing, or reviewing documentation (procedures, standards) to ensure a well-managed and mature security infrastructure
• Play a hands-on role in the engineering, implementation, and operations of security measures that protect the computer systems, networks, and information
  • Aid in disaster recovery planning and operations and data backups when needed • Provide Certificate Management activities, that include: o Certificate/Key Management Lifecycles (i.e., SSH, TLS Certificates) o Certificate/Key Management Policy, Process, & Template Development o Documentation (Administrative & Technical)
  o Managing User Issues with Certificates/Key Management Services o Metrics, Monitoring, and Reporting o Ordering Fulfilment / Queue Management o PKI Infrastructure Management

o PKI Performance/SLA Reviews (Stakeholders)

• Provide day-to-day administration and support for infrastructure related to API, application security, firewalls, encryption, intrusion detection systems, PKI, secrets management, vulnerability scanning, security monitoring tools, penetration testing, authentication, web filtering, identity management, or access control systems, and associated logs/processes
• Works closely with Information Security program manager, scrum master, and architects to convey technical impacts to development/engineering timeline and risks
• Work independently in identifying opportunities to improve operational or other performance for Security, Information Technology and other functions across Organization.
• Work with Information Security Architects, Engineers, API developers to drive program delivery
• Work with Information Security leaders to drive secrets management development and standards across the organization

• Serve as subject-matter expert to other team members in the Information Security organization • Perform other duties and/or special projects as assigned