Cryptography Platform and Services Technologist Lead
The Bank of New York Mellon Corporation
Pittsburgh, United States of America
yesterday
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
SeniorJob location
Pittsburgh, United States of America
Tech stack
Secure Shell (SSH)
IEEE 802.1X
Amazon Web Services (AWS)
Azure
Cisco Routers
Software as a Service
Control Objectives for Information and Related Technology (COBIT)
Computer Security
Digital Signature
Disaster Recovery
Hardware Security Module
Internet Protocol Security (IP SEC)
Information Systems Security Architecture Professional
Kerberos (Protocol)
Key Management
Oracle Applications
PCI Data Security Standards
Public Key Infrastructure
X.509
Cloud Services
Blockchain
RSA (Cryptosystem)
Pretty Good Privacy (PGP)
RSA SecurID
Cisco networks
Key Vault
Job description
We're seeking a future team member for the role of Cryptography Platform and Servies Technologist Lead
to join our Cybersecurity Organization team. This role is located in NYC/NJ, Lake Mary, Florida, or Pittsburgh PA
In this role, you'll make an impact in the following ways:
- Lead BNY Key Management solutions across BNY Enterprise
- Design, implement, and support Cryptography Key Management solution across BNY Enterprise.
- Design, implement, and support Cryptography Asset Management solution across BNY Enterprise.
- Ability to respond to requests from LOB, Internal Audit, and Federal Regulators on BNY Key Management ecosystem
- Train enterprise on PKI platforms, HSMs, and Key Management systems.
- Collaborate with compliance teams to align solutions with regulatory frameworks such as GDPR, DORA, NIST, and ISO 27001.
Requirements
- Master's in information security or related fields.
- 5-10+ years of work experience in cyber security, architecture design, Key Management and PKI solutions.
- Key Management (HSM, Thales Products (Ciphertruct, DPOD), Oracle Key Vault)
- HSM, RSASecurID, cryptographic algorithms (e.g., RSA, AES), protocols (e.g., SSL/TLS, IPSec, SSH, Kerberos)
- Security policies, disaster recovery, change management, risk assessment, threat modeling
- Security within Cloud Services (AWS, Azure), Cisco routers and switches, IoT
- ISO/IEC 27001, PCI DSS, X.509, IEEE 802.1X, FISMA, NIST, MITRE, COBIT, ITIL
- Ability to train enterprise on HSMs and Key Management systems.
- Knowledge of Cryptographic algorithms and cryptographic principles, including digital signatures and blockchain systems.
- Familiarity with compliance frameworks such as GDPR, DORA, NIST, and ISO 27001.
- Experience with Key Management systems, HSMs, and PKI Platforms.
- Experience in global Financial Services security ecosystem is preferred.
- Practical experience with PKI, HSM, RSA SecurID, PGP,cryptographic algorithms (e.g., RSA, AES), protocols (e.g., SSL/TLS, IPSec, SSH, Kerberos).
- Practical experience in Thales HSM, Thales SAAS Products, Thales Ciphertrust, Oracle Key Vault
- Hands-on experience with Thale's products and Oracle key management products.
- Strong communication skills for presenting Key Management concepts to diverse technical and non-technical audiences.
- Certifications: Certified Information Systems Security Professional CISSP, Cisco Certified Entry Network Technician CCENT, Certified Technical Trainer CTT etc.
- Experience with Cybersecurity policies, cryptographic algorithms, Public Key Infrastructure (PKI), HSM, and key management systems.