Cloud Crypto Architect

Job Title: Cloud Crypto Architect

Location: Bangalore (Hybrid - 3 days Work From Office)

Experience: 8-10 years

Job Summary:

Key Responsibilities:

Cryptographic Expertise:

• Possess a deep understanding of core cryptographic concepts and principles.
• Demonstrate familiarity with Key Management standards and the cryptographic services supported by various Cloud Service Providers (CSPs).
• Apply expertise in cryptography for data protection and secure key management within diverse cloud environments.
• Understand and implement Key Exchange mechanisms between CSPs and their customers.

Solution Design & Development:

• Prototype and build GitHub & Terraform Modules for: Key Management Systems, Keys, Certificates, Certificate Authorities, and any cryptographic asset.
• Design, build, and deploy custom applications for data protection.

Policy & Compliance:

• Assist with the definition and implementation of Service Control Policies related to data protection and cryptography.
• Support and assist with service certifications (e.g., ISO 27001, SOC 2, HIPAA, PCI DSS where applicable).
• Validate existing services, Terraform Enterprise (TFE) modules, and other resources to ensure adherence to data protection requirements.

Documentation & Best Practices:

• Create, maintain, and improve existing documentation related to cryptographic architectures, policies, and procedures.
• Assist with the generation of playbooks for cryptographic operations and incident response.
• Conduct audits to ensure compliance and identify areas for improvement in cryptographic practices.

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).
• 8-10 years of progressive experience in cloud security, with a strong focus on cryptography and key management.
• Proven experience with major Cloud Service Providers (e.g., AWS, Azure, GCP) and their cryptographic services.
• Strong understanding of security best practices, industry standards, and regulatory compliance frameworks.
• Proficiency in scripting/automation languages (e.g., Python, Go) and Infrastructure as Code (IaC) tools like Terraform.
• Experience with version control systems, particularly GitHub.
• Excellent problem-solving skills and the ability to work independently and as part of a team.
• Strong communication and interpersonal skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.

Preferred Qualifications:

• Master's degree in a relevant field.
• Relevant industry certifications (e.g., CISSP, CCSP, AWS Certified Security - Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer).
• Experience with Hardware Security Modules (HSMs) and other cryptographic hardware.
• Familiarity with containerization technologies (Docker, Kubernetes).
• Experience with CI/CD pipelines.