Senior Security Engineer, Cyber Defense Engineering (Crypto)
This is a perfect opportunity for the right person to become a key part of a fresh, new team of cybersecurity professionals that are being assembled to execute a pivotal role in protecting and defending the nation’s critical infrastructure.
The Senior Security Engineer, Cyber Defense Engineering will be part
of a team responsible for operating a highly important Cyber Defense function. This role encompasses the implementation and subsequent maturing of Cyber Defense solutions for CME’s Cryptographic Services Platform(s) within CyberDefense Engineering – Global Information Security.
Position Responsibilities
Participate in the Creation and Execution of Cyber Defense solutions as directed by Cyber Defense management and in accordance with CME’s Cyber Defense Roadmap
Manage projects according to project plans with a keen eye to objective delivery, cost adherence and minimizing risk
Maintain industry awareness of; Cyber Defense Product Landscape, emerging and rising threat landscape and the latest/newest protocols/techniques/evolution in Cyber Security/Cyber Defense with a focus on Cryptographic Technologies and emerging crypto patterns.
Create / Document complete Service Designs including, but not limited to, Technical Requirement Documents, Proof of Concept use cases, Technology Engineering Documents, Service Operations Guides, etc…
Perform Service Transition to requisite Service Operations organizations and Service Consumers
Position Requirements
Approx 5+ years in IT Engineering and\or Cyber Security Engineering
Solid working knowledge of ITIL (ITIL Certification preferred)
A good understanding of Industry Security standards (ie: ISO27001/2, NIST Cyber Security Framework, etc..)
Practical working knowledge of agile engineering, implementing, operating and supporting a Cryptographic Infrastructure consisting of such elements as; Enterprise Key Management System (EKMS), Public Key Infrastructure (PKI), Hardware Security Modules (HSM), Key Management Interoperability Protocol (KMIP), Keyed-Hash Message Authentication Code (HMAC), Transparent Data Encryption (TDE), Enterprise Digital Rights Management (EDRM) for
Data-at-Rest, Data-in-Transit and Data-in-Use.
Solid understanding of High Availability, System Resiliency, Systems Engineering and Web technologies.
A working knowledge of Cloud Technologies (e.g. GCP, AWS, Azure), particularly Crypto implementations
A working knowledge of Terraform, KCC and RestAPI
Exceptional interpersonal skills; must build strong relationships with partners (internally and externally)
Strong problem solving and troubleshooting skills with the ability to exercise mature judgment
Proven execution capabilities. Willingness to get hands dirty and do whatever it takes to ensure success. Ability to work under pressure, owning and meeting critical deadlines.
Applications processed via employer's online application form