Previous Job
Senior Information Security Engineer
Ref No.: 18-01777
Location: Englewood, Colorado
In this role, you will be a member of the Information Security organization, but will partner with various IT teams within the company to design and implement encryption standards.  You will act as a consultant for the Encryption team, and will work on both the infrastructure and software aspects of encryption to increase the company security posture and meet its regulatory compliance obligations.  This position is focused on encryption, but you will also interact with other members of the Information Security organization and leverage different security tools as needed. You'll be in a project-based environment and collaborate with a variety of team members.
Sound interesting? Here are some specifics:
  • Serve as the overall encryption subject-matter expert
  • Consult IT project teams needing encryption services by planning, designing, building, and certifying
  • Administer encryption appliances and provide Level 2 troubleshooting support
  • Train junior team members and coordinate with Level 1 support
  • Partner with 3rd party resources and external consultants
  • Support encryption on premises, in the cloud, or in a hybrid model
What you will need to succeed: 
  • 3 to 5 years of experience supporting a centralized encryption key management system
  • Experience with Client suite Knowledge of the types of encryption keys and their implementation
  • Understanding of HSMs and their role in an enterprise
  • Knowledge of Java and .Net coding(web applications development at plus)
  • Strong experience with web technologies (scripting, SSL, HTTP/S) and their security requirements
  • Experience with encryption key management and life cycle for data at rest
  • Experience with certificate management and PKI Experience with all versions of Microsoft Windows, Active Directory and LDAP
  • Experience with various network, DNS, web, VPN and perimeter protection technologies
  • Familiarity with regulatory encryption requirements: PCI, GDPR, NYCL
  • Ability to collaborate with technical and vendor personnel, cloud service providers.
  • Ability to communicate technical security requirements to business units and implement security plans
  • Available occasional off-hours on-call for security incidents and escalations
  • Industry certifications such as: SANS GSEC, CISSP, Microsoft (MCSE + security)
  • BS degree in computing / information systems / 6+ years of information security and/or network security experience.
  • Experience with RSA Data Protection Management Experience with various network, DNS, web, VPN and perimeter protection technologies.
  • Ability to program in shell / scripting languages, SQL query and manipulation.
  • Strong experience with Linux operating systems.
  • Strong in TCP/IP, network packets analysis, firewall technology, IDS/IPS technology.
  • Strong with SIEM, event correlation technologies.