Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

Bank Of America Technology Services Lead - GBS 
India, Tamil Nadu, Chennai 
54556773

25.03.2025

Job Description

We are seeking a talented and experienced senior Key Management system (KMS) Administrator to design, implement, manage, and maintain our organizations Key management infrastructure. The successful candidate will have strong background in Key management, HSMs and cloud security. This role will oversee the entire key lifecycle, ensure secure key storage and collaboration with stakeholders to identify and prioritize key management requirements. Work closely with our engineering, operations, and security teams to design, implement, and maintain highly available and performant KMS solutions.​

Responsibilities

  • Develop and implement key management strategy aligned with industry standards and best practices.
  • Administer and maintain the KMS platform, ensuring its availability, security, and performance.
  • Ensure compliance with relevance regulatory requirements and industry standards and identify and mitigate the key management-related risks.
  • Mentors other team members and provides technical leadership
  • Collaborate with Engineering and develop or maintain scripts to automate the key management tasks, monitoring etc.
  • Ensure that all the key managements activities are monitored, and the logs are being reviewed periodically
  • Collaborate with other teams such as networks, IT security and compliance, Engineering, and stakeholders to ensure alignment and effective key management. Communicate key management plans, policies, and procedure to stakeholders.
  • Manage the entire key lifecycle and ensure secure key storage, backup, and recovery processes.
  • Stay up to date with industry standards, best practices, and emerging technologies in key management.
  • Supports change implementations, proactively identifies and resolves potential issues resulting from the changes and performs access and/or physical provisioning/deprovisioning (additions, modifications, and deletions) for infrastructure and applications. ensure the changes are properly documented and communicated to stakeholders.
  • Manage the lifecycle of the SSL certificate including installation and renewal. Monitor on the certificate expiration and renewal.
  • Respond to and manage key management related incidents, such as key compromises or certificate expiration or other issues, co-ordinate with stake holders to resolve incidents and minimize impact. Also, document and report on incidents including root cause analysis and lessons learned.
  • Provides consulting services to Core Technology Infrastructure (CTI) and technical partners, executes procedures reliably, and escalates appropriately to solve incidents quickly
  • Monitor and optimize the performance and scalability of KMS Infrastructure.

Requirements

: Bachelor’s degree in engineering, computer science

CertificationsIf any -NA

: 8 to 12 years.

Foundational Skills

  • Primary Skills: Cryptography, Thales HSM, Cipher Trust Manager, Linux, Scripting, Cloud KMS
  • Strong knowledge on cryptography algorithms, protocols, and techniques.
  • Understanding of KMS concepts, architecture, and best practices.
  • Hands on experience working on Linux/Unix and/or Windows server platforms.
  • Strong understanding of cryptographic principles and key management best practices.
  • 2+ years hands on experience on Thales HSM or Cipher Trust Manager and their configurations.
  • Proficiency in scripting languages such as python, PowerShell and Bash.
  • Experience with key management systems such as AWS KMS, Azure Key Vault, or Google Cloud KMS.
  • Additionally having knowledge in API calls on Thales HSM or Cipher trust manager.
  • Ability to analyze complex technical problems and identify solutions.
  • Excellent troubleshooting and problem-solving skills.
  • Strong communication and interpersonal skills.
  • Familiarity of Incident and Problem Management systems like Remedy or ServiceNow.
  • Ability to work independently and as part of a team in a fast-paced environment.
  • Knowledge on security standards and regulations. Eg: PCI-DSS, HIPAA

Desired Skills

  • Experience with Key management systems and HSM (e.g. the product from Thales, Entrust, Vormetric, etc.)
  • Experience with industry monitoring tools like Splunk, etc.
  • Experience in JIRA, confluence.
  • Ability to quickly learn new technologies.
  • Basic knowledge on networking protocols such as TCP/IP, DNS and DHCP.
  • Familiarity with API calls.
  • Prior experience with Operating critical Infrastructure or Application environments
  • Ability to communicate technical concepts to non-technical stakeholders.
  • Familiarity with cloud based key management systems such as AWS KMS, etc.
  • Stakeholder management
  • Certifications on AWS certified security, Red Hat, CISSP.

Work Timings*(IST – 9 hrs shift)

6:30 am - 10:30 pm (weekdays) any 9 Hours: Weekend: Rotational support 16*7 support

Shift: Morning or Afternoon