Bank of America
Cryptographic Engineer
Charlotte, North Carolina;Jacksonville, Florida; Plano, Texas
Job Description:
About us:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Job Description:
This job is responsible for working on the least complex technical designs that enable business strategies in accordance with architectural governance, standards and policies. This job facilitates deployment of technical solution by developing templates, playbooks, and automation used during implementation and consistently looking for opportunities to improve the reliability and efficiency of implementing services. Job expectations include embracing a culture of innovation and continuous improvement.
Overview:
The Cryptographic Engineer will be responsible for designing, implementing, and maintaining the key management system used to protect sensitive data within the bank. This role involves ensuring the secure generation, storage, distribution, and rotation of cryptographic keys in compliance with NIST and industry standards following all the best practices. Ability to produce detailed architectural diagrams and technical documentation from business/technical requirements.
Responsibilities:
Provides subject matter expertise and consulting services on a range of technologies, contributing to the technology strategy for end-to-end engineering solutions and providing feedback to the architecture teams
Follows reference models, blueprints and playbooks to ensure the design is compliant
Assists in translating business requirements into technical definitions, reference models, blueprints, and playbooks for deployment in compliance with architecture standards and policies
Assists Technical Analysts by ensuring system design technology solutions comply with enterprise system design and engineering standards
Develops software solutions to address manual and repeatable work or inefficient processes
Supports an inclusive and healthy working environment
Develop and implement key management solution based on security policies and procedures to achieve secure key lifecycle management
Oversight of the generation, distribution, and secure storage of cryptographic keys, ensuring they are held in accordance to the highest security protocols
Build, maintain and monitor highly resilient, redundant and secure key management systems
Ensure compliance with internal standards, procedures and regulatory requirements related to key management. Participate in security audits and assessments
Available to respond to security incidents involving the compromise or corruption of cryptographic key scenarios. Devise, implement and document corrective actions to prevent future incidents. Familiarity of Incident and Problem Management systems like Remedy or ServiceNow
Work closely with clients, partners, vendors and security teams to integrate key management practices into broader security initiatives. Provide guidance and support on cryptographic practices. Collaborate with operations and other cross-functional teams to implement automated workflows for key lifecycle management
Maintain comprehensive documentation of key management processes, configurations, and incident responses
Conduct training sessions and awareness programs for employees on best practices in key management and cryptographic security. Stay up-to-date with industry trends and emerging technologies related to key management and cryptographic standards
Required Qualifications:
Minimum of 4+ years of experience in key management, cryptographic security, or a related field
Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI)
Strong understanding of cryptographic algorithms and protocols
Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS)
Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)
Proficiency in Linux and Windows operating systems
Strong experience with automation using Perl, python or PowerShell
Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)
Use of monitoring tools i.e. Splunk, Elastic, Prometheus/Grafana stack, ELK, etc.
Proficiency in at least one programming language (e.g., Java, Go) and experience with orchestration tools (e.g., Ansible, Terraform).
Experience using Utimaco, Thales, Entrust, etc. products for HSM and other Key Management components like legacy Gemalto, Vormetric or CipherTrust Manager
Working knowledge of JIRA and Agile Scrum routines
Familiarity with DevOps practices and tools (e.g., CI/CD pipelines)
Desired Qualifications:
Bachelor’s degree in Computer Science, Information Security, or relevant experience
Advanced degrees or certifications (e.g., CISSP, CISM, CEH)
Strong analytical and problem-solving skills
Excellent communication and interpersonal skills
Self motivated and able to work with minimal supervision as part of a team
Detail-oriented with a strong commitment to maintaining high-security standards
Skills:
Analytical Thinking
Application Development
Automation
Production Support
Risk Management
Adaptability
Architecture
DevOps Practices
Solution Delivery Process
Solution Design
Business Acumen
Innovative Thinking
Project Management
Stakeholder Management
Technical Strategy Development
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE (https://u.go/0As7EN) .
View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE .
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.
Charlotte, North Carolina;Jacksonville, Florida; Plano, Texas
Job Description:
About us:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Job Description:
This job is responsible for working on the least complex technical designs that enable business strategies in accordance with architectural governance, standards and policies. This job facilitates deployment of technical solution by developing templates, playbooks, and automation used during implementation and consistently looking for opportunities to improve the reliability and efficiency of implementing services. Job expectations include embracing a culture of innovation and continuous improvement.
Overview:
The Cryptographic Engineer will be responsible for designing, implementing, and maintaining the key management system used to protect sensitive data within the bank. This role involves ensuring the secure generation, storage, distribution, and rotation of cryptographic keys in compliance with NIST and industry standards following all the best practices. Ability to produce detailed architectural diagrams and technical documentation from business/technical requirements.
Responsibilities:
Provides subject matter expertise and consulting services on a range of technologies, contributing to the technology strategy for end-to-end engineering solutions and providing feedback to the architecture teams
Follows reference models, blueprints and playbooks to ensure the design is compliant
Assists in translating business requirements into technical definitions, reference models, blueprints, and playbooks for deployment in compliance with architecture standards and policies
Assists Technical Analysts by ensuring system design technology solutions comply with enterprise system design and engineering standards
Develops software solutions to address manual and repeatable work or inefficient processes
Supports an inclusive and healthy working environment
Develop and implement key management solution based on security policies and procedures to achieve secure key lifecycle management
Oversight of the generation, distribution, and secure storage of cryptographic keys, ensuring they are held in accordance to the highest security protocols
Build, maintain and monitor highly resilient, redundant and secure key management systems
Ensure compliance with internal standards, procedures and regulatory requirements related to key management. Participate in security audits and assessments
Available to respond to security incidents involving the compromise or corruption of cryptographic key scenarios. Devise, implement and document corrective actions to prevent future incidents. Familiarity of Incident and Problem Management systems like Remedy or ServiceNow
Work closely with clients, partners, vendors and security teams to integrate key management practices into broader security initiatives. Provide guidance and support on cryptographic practices. Collaborate with operations and other cross-functional teams to implement automated workflows for key lifecycle management
Maintain comprehensive documentation of key management processes, configurations, and incident responses
Conduct training sessions and awareness programs for employees on best practices in key management and cryptographic security. Stay up-to-date with industry trends and emerging technologies related to key management and cryptographic standards
Required Qualifications:
Minimum of 4+ years of experience in key management, cryptographic security, or a related field
Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI)
Strong understanding of cryptographic algorithms and protocols
Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS)
Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)
Proficiency in Linux and Windows operating systems
Strong experience with automation using Perl, python or PowerShell
Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault)
Use of monitoring tools i.e. Splunk, Elastic, Prometheus/Grafana stack, ELK, etc.
Proficiency in at least one programming language (e.g., Java, Go) and experience with orchestration tools (e.g., Ansible, Terraform).
Experience using Utimaco, Thales, Entrust, etc. products for HSM and other Key Management components like legacy Gemalto, Vormetric or CipherTrust Manager
Working knowledge of JIRA and Agile Scrum routines
Familiarity with DevOps practices and tools (e.g., CI/CD pipelines)
Desired Qualifications:
Bachelor’s degree in Computer Science, Information Security, or relevant experience
Advanced degrees or certifications (e.g., CISSP, CISM, CEH)
Strong analytical and problem-solving skills
Excellent communication and interpersonal skills
Self motivated and able to work with minimal supervision as part of a team
Detail-oriented with a strong commitment to maintaining high-security standards
Skills:
Analytical Thinking
Application Development
Automation
Production Support
Risk Management
Adaptability
Architecture
DevOps Practices
Solution Delivery Process
Solution Design
Business Acumen
Innovative Thinking
Project Management
Stakeholder Management
Technical Strategy Development
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE (https://u.go/0As7EN) .
View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE .
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.