Senior Encryption Engineer
- Full-time
- Employee Status: Regular
- Role Type: Home
- Department: Information Technology & Systems
- Schedule: Full Time
Company Description
The Encryption engineer will follow the guidance from the data protection – EITS team to execute on a defined strategy following established processes and procedures.
The Encryption Engineer will work closely with the various internal teams including but not limited to: Application owners, Application developers, Infrastructure teams, Database Teams, Audit and risk management teams, Regulatory compliance teams External Key Management software vendors and professional services teams, other security tool Administrators, and business unit customers.
The engineer is responsible for the implementation of the data security controls to ensure data protection is maintained as per processes and standards set by his global DP team.
Job Description
Encryption Engineer Functions
- Explain the Integration guides and follow the steps to integrate encryption and key management as applicable. Work under the guidance of his manager to execute integrations/maintenance of existing integrations as per his team’s and managers guidance.
- Collaborate with the Manager to Identify capability gaps and operational inconsistencies within the Data Protection controls environment and develop a plan to address through product enhancement, reconfiguration, upgrades and/or automation of processes
Encryption Engineer Responsibilities
- Timely Completion of Work:
- Report progress against Plan weekly
- Provide inputs to Refresh Data Protection roadmap/s quarterly
- Quality of Work:
- Ensure Technical and Process documentation is 100% current all the time (all changes thoroughly documented)
- Ensure new builds/integrations/agent implementation follow operational readiness processes, are fully documented, health/performance KPI's are defined and in place, and monitoring and alerting is in place before promoting to production
- Follow change governance and guidance from his team (including documented processes where available and applicable)
- Educate Self and Peers:
- Demonstrate continual progress toward obtaining a security-specific (or specific security product certification)- or maintain a current certification
- Complete two career-related training courses per year
- Attend lunch and learn sessions to share knowledge with Engineering group
Qualifications
Employees in this role have extensive information security experience and exposure to multiple security technologies:
- Experience in working with business teams to understand and document encryption and key management strategy of IT driven products and services.
- Data encryption architect or engineer – able to understand and guide and train development teams on how to encrypt data on premises or the cloud and how to manage the lifecycle around the encryption keys and store them securely
- Experience in using AWS KMS, Cloud HSM, Gemalto/ Thales HSM and key management will be preferred.
- At least 1 year of experience in architecting and implementing encryption strategies on AWS, Azure on Google cloud including working on CMKs and integrating with a third party HSM “provider”
- Experience with setting up, managing and running PKI and automating certificate lifecycle management
- Spoken and written English capability preferred
Additional Information
- Competitive salary and comprehensive benefits package.
- Opportunity to work in a global organization with a culture of innovation and collaboration.
- Career development and growth opportunities within a dynamic and evolving digital workplace environment.
Application Process:
- Interested candidates are encouraged to submit their resume and cover letter highlighting their qualifications and experience relevant to the role, especially focusing on team leadership and development. We are committed to creating a diverse environment and are proud to be an equal opportunity employer.
#LI-REMOTE
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here