Post-Quantum Cryptography - Security Engineer

PNC is seeking a Security Engineer to join its Technology organization. The successful candidate will provide subject matter expertise on security concepts and design, build, and maintain technology solutions. They will work with architecture to determine implementation details and evaluate patches, updates, and ongoing maintenance.

Requirements

• Expertise in Data Protection techniques and technologies
• Working experience with encryption, algorithms, lifecycle management, secure room environments, key ceremonies, and chain of custody
• Understanding of encryption key solutions for cloud providers (AWS, Azure) and data storage platforms (MSSQL, Oracle, Linux, MongoDB, Pure Storage, NetApp)
• Understanding of key solution connector types (KMIP, BYOK, HYOK, TDE, NAE)
• Experience with certificates including certification lifecycle management, troubleshooting, and issuance
• Skills in securing end-user devices and understanding endpoint protection tools
• Understanding of network security protocols, firewalls, VPNs, and intrusion detection systems
• Power BI and Power Automate Experience: Skills in Data Virtualization and Automation
• Experience with building a cryptographic bill of materials
• Understanding of PCI Compliance, FIPS standards and NIST Guidelines for the latest cryptographic standards and initiatives for PQC
• Understanding of cryptographic agility principals
• Working knowledge of cryptographic validation processes for cryptographic modules
• Delivery Oriented: The ability to deliver initiatives and Business as Usual (BAU) activities efficiently and effectively
• Problem-Solving: Strong analytical and troubleshooting skills to identify and resolve issues
• Attention to Detail: Precision in configuring and monitoring data security tools and practices
• Communication: Ability to explain complex technical concepts to non-technical stakeholders and work across different teams
• Adaptability: Ability to stay updated with evolving security threats and technologies
• Ethics and Integrity: Strong ethical principles to handle sensitive and confidential information responsibly
• Documentation Creation: Creation of concise and professional documentation, such enterprise policies, procedures, or presentations (Executive level through internal team communications)
• Forward Thinking: Ability to see beyond the present and consider the long-term implications of solutions
• Advanced knowledge of Cryptographic solutions to deliver strategic planning; including understanding of algorithms and impact of Quantum computing capabilities
• Incident Response: Experience in handling security incidents, breaches, and mitigating risks
• Delivery: Proven track record in driving delivery for initiatives and BAU activities
• Metrics Management: Experience in identifying and developing Metrics, KRIs to support data protection processes
• Industry Experience: Experience in the industry or sector relevant to your business, such as finance, healthcare, or technology
• Expertise with Cryptographic Systems/Technologies: Thales Network HSMs, Thales CipherTrust Manager, Oracle Key Manager, Swift HSMs, Entrust HSMs, Protegrity, Venafi, and ADCS/PKI
• Familiarity with Data Protection solutions (PowerShell, Microsoft 365 etc.)
• Experience with collaboration tools Jira, Confluence, SharePoint, or ServiceNow
• Experience with dashboarding or visualization products: Tableau, PowerBI
• Advanced knowledge of cryptographic agility tooling: (InfoSec Global, SandboxAQ, Qrypt, QuSecure... etc.)

Benefits

• Medical/prescription drug coverage (with a Health Savings Account feature)
• Dental and vision options
• Employee and spouse/child life insurance
• Short and long-term disability protection
• 401(k) with PNC match, pension and stock purchase plans
• Dependent care reimbursement account
• Back-up child/elder care
• Adoption, surrogacy, and doula reimbursement
• Educational assistance, including select programs fully paid
• A robust wellness program with financial incentives
• Maternity and/or parental leave
• Up to 11 paid holidays each year
• 8 occasional absence days each year, unless otherwise required by law
• Between 15 to 25 vacation days each year, depending on career level