Digital Security Architect
- Recruiter
- Quest Technology Management
- Location
- Folsom
- Salary
- Competitive
- Posted
- 25 Sep 2024
- Closes
- 23 Oct 2024
- Job Type
- Security Architect
- Employer Sector
- Technology, IT & Telecoms
- Contract Type
- Permanent
- Hours
- Full Time
Our vision is to transform how the world uses information to enrich life for all .
Micron Technology is a world leader in innovating memory and storage solutions that accelerate the transformation of information into intelligence, inspiring the world to learn, communicate and advance faster than ever.
We are seeking a highly skilled and dedicated Data Security Engineer to join our Digital Security team in Folsom, CA. The successful candidate will be responsible for the architecture, process, and governance of digital signing and certificate authority services. This role is critical in ensuring the integrity, confidentiality, and authenticity of our digital roots of trust and product integrity.
Some travel is required. International travel to Singapore, India and Shanghai may be required on occasion.
Key Responsibilities:
- Architecture Design:
- Develop, document and maintain the architecture for digital signing and certificate authority services.
- Ensure the architecture aligns with industry best practices and regulatory requirements.
- Collaborate with external suppliers, IT and security teams to integrate digital signing and certificate authority services into the broader security infrastructure.
- Process Management:
- Design, implement, and manage processes for digital signing and certificate issuance, renewal, and revocation.
- Develop and maintain documentation for all processes and procedures.
- Monitor and audit processes to ensure compliance with internal policies and external regulations.
- Governance:
- Establish and enforce governance policies for digital signing and certificate authority services.
- Conduct regular reviews and audits to ensure compliance with governance policies.
- Provide training and support to internal teams on governance policies and procedures.
- Security and Compliance:
- Ensure the security of digital signing and certificate authority services through regular assessments and updates.
- Stay up–to–date with the latest security threats and trends, and implement appropriate countermeasures.
- Ensure compliance with relevant regulations and standards, such as FIPS, SPDM, PKCS, Quantum Compute and CNSA.
- Incident Response:
- Respond to security incidents related to digital signing and certificate authority services.
- Conduct root cause analysis and implement corrective actions to prevent future incidents.
- Collaborate with other security teams to manage and mitigate security incidents.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 5–10 years of experience in digital/information security, with a focus on digital signing and certificate authority services.
- Strong understanding of cryptographic principles and technologies.
- Experience with Public Key Infrastructure (PKI) and related technologies.
- Experience with cloud–based security solutions.
- Secure server implementation, deployment and maintenance.
- Java, Python experience is a plus.
- Excellent problem–solving and analytical skills.
- Strong communication and interpersonal skills.
Preferred Qualifications:
- Master's degree in Computer Science, Information Security, or a related field.
- Competent with PKCS suite interpretation and deployment.
- Public key cryptography standards (PKCS, FIPS, CNSA).
- Security best practices in the areas of key management, code signing process and specifications.
- CoRIM and SBOM knowledge.
- Post quantum aware.
- HSM deployment and management.
- X509v3 cert hierarchy (capable of comprehending ASN1, DER and PEM formats).
- Application of cryptography to secure digital content.
- Demonstrable skills with OPENSSL.