Sr. Security Specialist - 55087

Business Unit: 4 - Cloud Security Governance

Duration: 6 Months

Extension possible: Yes

Conversion Possible: Yes

Interview Process: 1 round, possibly 2

Work Location (Remote, Hybrid or Both?): Hybrid (Tues and thurs)

CANDIDATE PROFILE DETAILS:

Years of experience: 8+

Reason for request/why opened: backfill

% Interaction with Stakeholders: 50%

Team Size: 15

Project: Multiple projects which are ongoing. Applying encryption.

Selling Point of the position: possible extension and conversion to full time

How will performance be measured: deliverables, feedback from project managers and tech aptitude

Best vs Average Candidate: previous exp with large fi banks, strong background in Linux, databases and Storage.

SUMMARY OF DAY-TO-DAY RESPONSIBILITIES:

The Crypto Engineering team is looking for a candidate to apply hands-on keyboard implementation of encryption on vast array of applications owned by the Business. Each business application is unique. The candidate will need to flush out requirements and apply strong engineering testing methodologies to validate impact of encryption.

This role will be responsible for solutions in areas such as, but not limited to:

• Database Encryption (SQL, MongoDB, Oracle)

• Vormetric/CipherTrust Data At Rest Encryption

• Hardware Security Module (HSM) - Thales, Entrust, Utimaco Attala

• SME in at least 1 or more of the following Cryptographic tools (CipherTrust Manager, Symantec Encryption Manager, Venafi)

• Key Management

• Automation using Ansible

• Expertise on Linux

MUST HAVE:

It is expected that the Engineer will have sound technical knowledge in a wide range of Security technologies, frameworks, tools, processes and procedures.

• 5+ Expertise in Unix/Linux scripting

• 3+ Years experience with applying native database encryption

• Strong testing principles and methodologies

• Strong knowledge and previous experience or Storage (SAN, NAS)

• In-depth knowledge of various cryptographic and encryption technologies and standards (Symmetric/Asymmetric cryptography, Public Key cryptography, Digital signing service, Message Digest and Certificate Authority).

• Detailed understanding of firewalls, intrusion detection systems, authentication mechanisms, and networking protocols including SMTP, HTTP, DNS, TCP/IP, and SNMP as they pertain to security solutions.

• 2+ years’ Experience in scripting in at least one language (PowerShell, Python, etc.)

NICE TO HAVE

Certifications in CISSP, CCSP or relevant security certification

Previous experience at TD

endor's name. (No Value)