Cloud Data Encryption and Cryptography Automation Expert
Description:
The Security Services team at ITO, Ford Business Solutions, India is seeking a passionate and creative Cloud Data Encryption and Cryptography Automation Expert who can build and maintain critical security tools used to protect Ford's most sensitive security systems. The interested candidate should have experience in Public Key Infrastructure (PKI), Certificate Management, key management, EKCM, cryptography, data encryption and managing SaaS platforms such as Venafi, Cloud KMS as well as cloud computing (GCP, AWS, Azure), and automation.
RESPONSIBILITIES
YOUR TYPICAL DAY HERE WOULD BE:
Automate and orchestrate certificate management using Venafi
Collaborate with Platform vendors to coordinate distribution of regular updates/patches to clients and platform.
Test and implement vendor product upgrades.
Utilize GCP Cloud services, including KMS and ReCaptcha security services, to implement robust encryption, key management, and application security solutions
Act as an advocate and liaison with Cyber Defense analysts to understand their requirements and use cases, and to design, develop, and automate security solutions.
Work with application teams to adopt and modernize data security.
Manage nCipher HSM for key management, ensuring the security and integrity of cryptographic keys.
Automate repeatable tasks and workflows to improve process efficiency by developing APIs/scripts and deploying to the cloud.
Implement SRE for Platform services, capabilities/features to achieve availability and reliability.
Implement ZeroTrust capabilities across all device pillars to reduce and maintain non-compliance devices.
Research and evaluate new security technologies and make recommendations for implementation.
Stay up-to-date on the latest security trends and developments and maintain a high level of technical expertise in the field of endpoint security.
QUALIFICATIONS
WHAT YOUR SKILLSET LOOKS LIKE:
A relevant Bachelor's or Master's Degree in engineering/computer applications
3+ years of experience as a Security Engineer with a focus on using tools like Venafi, Cloud KMS
Experience in design and implementation of Windows Active Directory Certificate Services, CAs (both root and enterprise CAs).
Experience in configuring Online Responder service (OCSP) and Certificate Revocation List (CRL) servers.
Experience in working with external CAs like DigiCert, GlobalSign etc.
1+ years of experience in application/API development (Python Flask or FastAPI or Java or Node JS)
Basic experience in JavaScript, HTML5,CSS, etc.
Knowledge of GCP or Azure or AWS and configuring infrastructure using infrastructure-as-a-code libraries like Terraform, Ansible, etc.
Experience working in an Agile development environment
Understanding of Dev(Sec)Ops best practices highly advantageous
In-depth knowledge of cybersecurity principles, practices, and technologies.
Strong communication skills
The courage to promise and commitment to deliver, whatever it takes. Keen attention to detail.
Pro-active, independent, resourceful, able to work in a team environment and work independently with minimal supervision
Positive and passionate personality, with a zest for life outside of work (we truly mean it. And measure it too!)
WOULD BE GREAT IF YOU ALSO BRING:
Security Certifications:
Certified Information Systems Security Professional (CISSP) or
Venafi Security Administrator or
GCP: Professional Cloud Security Engineer
Full time