Reyes Holdings + Entities
Principal Cryptographic Security Engineer
Reyes Holdings + Entities, Rosemont, Illinois, United States,
Responsibilities
Pay Transparency Statement:The compensation philosophy reflects the Company's reasonable expectation at the time of posting. We consider a number of factors when making individual compensation decisions including, but not limited to, skill sets, experience and training, and other business needs. This role may also be eligible to participate in a discretionary incentive program, subject to the rule governing the program.Position Summary:The Principal Cryptographic Security Engineer will design, implement, and maintain Reyes Family of Business Global cryptography strategy and own the end-to-end delivery of enterprise cryptographic solutions and technologies. You will take an active role in providing subject matter expertise for Certificate Lifecycle Management, Certificate Authorities/Public Key Infrastructure (PKI), Hardware Security Modules (HSM), Data Access Governance, and modern data protection/cryptographic protocols and constructs utilized to safeguard data in motion, at rest, and while in use (e.g., tokenization, encryption, modern data de-valuation techniques). The Principal Cryptographic Security Engineer also maintains current knowledge of modernized computing paradigms, automation/orchestration frameworks, APIs, virtualization platforms, and security threats, recommends security enhancements and purchases that allow the Reyes Family of Businesses to deliver the most secure and robust digital applications deployed within the organization and within the cloud.Position Responsibilities may include, but not limited to:Responsible for defining proactive enterprise cryptography and data protection strategyPerforms in-depth research on cryptographic industry risks and trends and performs benchmarking analysis to provide enhanced insights on cryptographic maturity compared to industry peers and competitorsDevelop policies and procedures related to cryptography managementWork with security and development teams to ensure that our solutions meet security standards and regulatory requirementsDriving the business process definition across the enterprise cryptographic arenaNegotiating and liaising with different business and technology teams within the organizationCollaborate with Managed Service Providers to ensure they deliver effective and efficient support services based on contract terms, focusing on security, resiliency, and always available mobility services. Review and leverage vendor maintenance and support agreements to ensure support, response, and escalationPartner and collaborate with other teams in Architecture, Strategy, Planning, Performance, Project Delivery, Service Delivery, and Service Management to ensure the efficient and optimal delivery of IT ServicesOther projects or duties as assigned
Qualifications
Required Skills and Experience:Bachelor's degree in a technology discipline and 6+ years of related experience in the IT industry, with experience in cryptographic services and cryptographic security. Or High School Diploma and 9+ years of the above-stated experience, in lieu of a Bachelor's degreeProven ability to independently identify and resolve critical and complex issues through practical problem-solving skillsHighly familiar with modern network, computing, storage, database, virtualization, cloud, and security technologiesExperience with application management, configuration management, OS baseline configuration, and integration with security toolsEnd-to-end understanding of the secure software development lifecycle (SSDLC) and DevOps/DevSecOps process integrationMust have knowledge of current and emerging device architectures and security standard methodologiesCandidate should understand APIs, automated deployment methods, and API security management in a corporate settingProficiency or working knowledge of cybersecurity frameworks and methodologies such as NIST and/or ISOParticipate in an on-call rotation to provide leadership support as needed, which may include off hoursThis position must pass a post-offer background and drug testPreferred Skills and Experience:Experience in Operations/On-Prem. Certificate Authority (Microsoft) CA/PKI InfrastructureExperience in Certificate Mgmt. System/Card Management System (Venafi, Keyfactor, Entrust, etc.)HSM management (Entrust Ncipher HSM, Thales Luna, etc.), PKI, 802.1x/EA-TLS Authentication protocols, Kerberos, OAuth, OpenID Connect, Web Services, Wireless Networks, AD, LDAP, MFA technologiesOperations/Management of a PKI environment that is aligned with government regulations around a medium level of assurance for IdentityPrior experience working with a managed service providerPrior experience managing teams in a global enterprise multi-site environment (>150 locations)Master's DegreePhysical Demands and Work Environment:Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Due to the nature of our business in regard to such things as delivery schedules, order inputs, selection, and Department of Transportation Hours of Service, overtime, attendance and punctuality are essential job functions. Should an individual in this classification not be able to adhere to this requirement due to a disability, they should contact their Human Resources department to see what, if any, reasonable accommodation may be made.
#J-18808-Ljbffr
Pay Transparency Statement:The compensation philosophy reflects the Company's reasonable expectation at the time of posting. We consider a number of factors when making individual compensation decisions including, but not limited to, skill sets, experience and training, and other business needs. This role may also be eligible to participate in a discretionary incentive program, subject to the rule governing the program.Position Summary:The Principal Cryptographic Security Engineer will design, implement, and maintain Reyes Family of Business Global cryptography strategy and own the end-to-end delivery of enterprise cryptographic solutions and technologies. You will take an active role in providing subject matter expertise for Certificate Lifecycle Management, Certificate Authorities/Public Key Infrastructure (PKI), Hardware Security Modules (HSM), Data Access Governance, and modern data protection/cryptographic protocols and constructs utilized to safeguard data in motion, at rest, and while in use (e.g., tokenization, encryption, modern data de-valuation techniques). The Principal Cryptographic Security Engineer also maintains current knowledge of modernized computing paradigms, automation/orchestration frameworks, APIs, virtualization platforms, and security threats, recommends security enhancements and purchases that allow the Reyes Family of Businesses to deliver the most secure and robust digital applications deployed within the organization and within the cloud.Position Responsibilities may include, but not limited to:Responsible for defining proactive enterprise cryptography and data protection strategyPerforms in-depth research on cryptographic industry risks and trends and performs benchmarking analysis to provide enhanced insights on cryptographic maturity compared to industry peers and competitorsDevelop policies and procedures related to cryptography managementWork with security and development teams to ensure that our solutions meet security standards and regulatory requirementsDriving the business process definition across the enterprise cryptographic arenaNegotiating and liaising with different business and technology teams within the organizationCollaborate with Managed Service Providers to ensure they deliver effective and efficient support services based on contract terms, focusing on security, resiliency, and always available mobility services. Review and leverage vendor maintenance and support agreements to ensure support, response, and escalationPartner and collaborate with other teams in Architecture, Strategy, Planning, Performance, Project Delivery, Service Delivery, and Service Management to ensure the efficient and optimal delivery of IT ServicesOther projects or duties as assigned
Qualifications
Required Skills and Experience:Bachelor's degree in a technology discipline and 6+ years of related experience in the IT industry, with experience in cryptographic services and cryptographic security. Or High School Diploma and 9+ years of the above-stated experience, in lieu of a Bachelor's degreeProven ability to independently identify and resolve critical and complex issues through practical problem-solving skillsHighly familiar with modern network, computing, storage, database, virtualization, cloud, and security technologiesExperience with application management, configuration management, OS baseline configuration, and integration with security toolsEnd-to-end understanding of the secure software development lifecycle (SSDLC) and DevOps/DevSecOps process integrationMust have knowledge of current and emerging device architectures and security standard methodologiesCandidate should understand APIs, automated deployment methods, and API security management in a corporate settingProficiency or working knowledge of cybersecurity frameworks and methodologies such as NIST and/or ISOParticipate in an on-call rotation to provide leadership support as needed, which may include off hoursThis position must pass a post-offer background and drug testPreferred Skills and Experience:Experience in Operations/On-Prem. Certificate Authority (Microsoft) CA/PKI InfrastructureExperience in Certificate Mgmt. System/Card Management System (Venafi, Keyfactor, Entrust, etc.)HSM management (Entrust Ncipher HSM, Thales Luna, etc.), PKI, 802.1x/EA-TLS Authentication protocols, Kerberos, OAuth, OpenID Connect, Web Services, Wireless Networks, AD, LDAP, MFA technologiesOperations/Management of a PKI environment that is aligned with government regulations around a medium level of assurance for IdentityPrior experience working with a managed service providerPrior experience managing teams in a global enterprise multi-site environment (>150 locations)Master's DegreePhysical Demands and Work Environment:Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Due to the nature of our business in regard to such things as delivery schedules, order inputs, selection, and Department of Transportation Hours of Service, overtime, attendance and punctuality are essential job functions. Should an individual in this classification not be able to adhere to this requirement due to a disability, they should contact their Human Resources department to see what, if any, reasonable accommodation may be made.
#J-18808-Ljbffr