Security Engineer - Data Encyption

at  TD Bank

JOB REQUIREMENTS INCLUDE:

• Acts as a key contributor in a complex and critical environment
• Experience in assessing and selecting security tools and solutions that best meet the stated Security need at the Bank
• Proven track record of successful implementations
• Experience with security regulatory / compliance requirements including PCI and SOX
• Experience in creating high level and technical presentations and communication skills to explain the approach to a varying audience
• Strong analytical, reasoning, and organizational skills are essential.
• Excellent verbal and written communications skills are essential.
• Ability to establish and maintain effective working relationships with all levels of personnel both internally and externally; e.g. leadership, executives, clients, vendors, and agencies.
• Proven ability to work in a fast paced environment and manage multiple deadlines and priorities.
• Adapts to new different or changing requirements, quickly grasps new concepts adapts and reflects on lessons learned – comfortable with ambiguity, analyzes and evaluates, defines problem/challenge, identifies alternatives and makes timely decisions
• Work closely & collaboratively with Internal Engineering, Deployment & Operations teams to drive design adoption across IT
• Experience with Vendor Management and coordination concepts from multiple facets of the industry
• Proven ability to leverage deep subject matter expertise to develop and deploy a vision and help align others to that vision.
• Attention to detail and follow through including the ability to document work.
• Ability to transfer knowledge to fellow team members.
• Ability to make engineering design decisions, efficiently build solutions, solves technical problems, and makes improvements to our systems.
• History of making an impact, developing and executing on strategies and delivering superior results in both the short and long term

THIS ROLE WILL BE RESPONSIBLE FOR SOLUTIONS IN AREAS SUCH AS, BUT NOT LIMITED TO:

• Protecting data in Public Cloud (Azure, AWS)
• Vormetric/CipherTrust Data At Rest Encryption
• Hardware Security Module (HSM) – Thales, Entrust, Utimaco Attala
• SME in at least 1 or more of the following Cryptographic tools (Vormetric, Symantec Encryption Manager, Venafi), PKI (Microsoft CA, Self-signed CA, Verisign/Symantec)
• Key Management

IT IS EXPECTED THAT THE ENGINEER II WILL HAVE SOUND TECHNICAL KNOWLEDGE IN A WIDE RANGE OF SECURITY TECHNOLOGIES, FRAMEWORKS, TOOLS, PROCESSES AND PROCEDURES. THIS ROLE IS LOOKING FOR PEOPLE WITH SKILLS IN AS MANY OF THE BELOW TECHNOLOGY AREAS AS POSSIBLE:

• Expertise in either: Unix/Linux, Databases or Storage (SAN, NAS)
• In-depth knowledge of various cryptographic and encryption technologies and standards (Symmetric/Asymmetric cryptography, Public Key cryptography, Digital signing service, Message Digest and Certificate Authority).
• Detailed understanding of firewalls, intrusion detection systems, authentication mechanisms, and networking protocols including SMTP, HTTP, DNS, TCP/IP, and SNMP as they pertain to security solutions.
• Experience with Security as it applies to Cloud Solutions in Highly Virtualized Environments.
• Experience in scripting in at least one language (PowerShell, Python, etc.)