Info Security Analyst CRYPTOLOGY
|Reference # :||21-01215||Title :||Info Security Analyst CRYPTOLOGY|
|Location :||Irving, TX|
|Position Type :||Contract|
|Experience Level :||Start Date / End Date :||09/13/2021 / 07/12/2022|
Our client, a leading global financial services company, has approximately 200 million customer accounts and does business in more than 140 countries. They provide consumers, corporations, governments and institutions with financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
Key Management team is responsible for all forms of cryptographic keys including internal & external certificates, symmetric keys, asymmetric keys and internal secure email. Current efforts focus on key and certificate management improvements. This includes enhancing Certificate Management governance, enhancing the centralized key and cert inventory, generating non-compliant reports and taking corrective action on non-compliant components.
Roles / Responsibilities:
-Collaborate with Splunk and Ops team to Build a certificate inventory
-Analyze and identify all the data feeds that are needed for the certificate inventory.
-Collaborate with different teams to automate the certificate feed on a monthly basis.
-Analyze monthly Qualys scan with different cert feeds like (Venifi and MSPKI) and find out the why all the certs are not in Qualys scan. Work with Qualys team to include these scan. Ideally all organization issued certs should be found by Qualys scan
-Identify other data source like (NetInfo and CSI) to feed into Splunk and work with Splunk team to get these feeds automated.
-Partner with Splunk to build out different reports needs for certificate management
-Generate reports for all certificate cross referencing with CSI and NetInfo
-Certificate over 2 years
-Work with application owner to clean up non-compliant certificates.
-Help key management team in coming with training material for App managers and developers on certificate management
-This job roles provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
-Solid fundamental knowledge regarding the principles related to PKI, including certificates, private keys, encryption methods, and key usages.
-Strong analytical and quantitative skills; Data driven and results-oriented
-Knowledge of Splunk tool preferred
-Knowledge of organization process, and tools like CSI, NetInfo and key & certificate procurement is preferred
Please see our complete list of jobs at: