Cybersecurity Engineer

Description

The Cybersecuirty Engineer will be responsible for securing data using various encryption technologies for the company. This includes engineering solutions for data at rest and in transit. Duties will include configuring security policies, security system integration, and troubleshooting security issues to maintain a stable production environment. Additional responsibilities require working with vendors to develop and deliver solutions to meet business requirements, meet with customers, other engineering groups, risk and architecture personnel, in order to provide a stable and secure environment. The position will require a disciplined approach towards change management. Seeking a Cybersecurity Engineer in Durham, NC at Fidelity Investments
The Cybersecuirty Engineer will be responsible for securing data using various encryption technologies for the company. This includes engineering solutions for data at rest and in transit. Duties will include configuring security policies, security system integration, and troubleshooting security issues to maintain a stable production environment. Additional responsibilities require working with vendors to develop and deliver solutions to meet business requirements, meet with customers, other engineering groups, risk and architecture personnel, in order to provide a stable and secure environment. The position will require a disciplined approach towards change management. Primary Responsibilities
Work closely with all Enterprise organization to ensure 724 availability of Key management and encryption security products Strict adherence to change management policies Escalating issues as needed Troubleshooting data security issues Member of DEVOPs team with oncall rotation responsibilities Support and guidance to other support and engineering teams as needed
Learning Fidelitys Information security and network security Core network components
Engineering tasks Developing configurations to meet business requests Active liaison with customers and business partners, offering technical guidance Assisting other engineers in peer review Conducting testing in the network lab setup, configuration, testing
Ability to work independently with minimal supervision in order to define and implement complex projects Responsibility for personal calendar
Be an active liason with customers and business partners, offering technical guidance Excellent listening skills
Ability to provide project management and senior technical personnel consulting, including project definition and task identification Excellent written and oral skills Project presentation to other engineers and senior executives
Development and automation of tools to automate manual processes Python experience is mandatory Demonstrated experience in automation Adhering to defined work processes Tools to create change requests Applying different implementation methodologies based on type of request Engineer, deploy and update techologies to satisfy everchanging business requirements
Documentation of securitity infrastructure, implementation and operational manuals Work independently with minimal supervision in order to define and implement complex projects Rotating oncall support (24 x 7)
Education and Experience
4 year degree preferable 1+ years within the network & information security Engineering environment
Skills and Knowledge
Proven Knowledge of Security Architectures with experience in key management, key storage , Security principles and 2 factor authentication CAPI, keystores, keychain, key escrow, key history Symmetric, Assymmetric keys Encryption and hashing algorithms Authentication, confidentiality , data intergirity
Evaluation, engineering and implementation of new security technolgoies including but not limited to encryption, web security, PKI, smart cards, HSMs Security concepts
Understanding of network and security protocols KMIP TCP/IP 802.1x SSL VPN HTTP, HTTPs LDAP, LDAPs CMP SCEP
Understanding of mobile computing including WLAN Understanding of firewall policies Experience with PKI, HSMs, and Key Management technologies is a plus Experience with web server technology Experience with LDAP and proxy technologies General knowledge of a wide array of encryption technologies and industry standards Strong written and verbal communication skills to interact at all levels of the Fidelity organization, from senior executives to technical experts Security Certification a plus