Today
Unspecified
Mid Level Career (5+ yrs experience)
$150,000 and above
IT - Security
Crypto Agility Architect
About the Opportunity
We are seeking a highly experienced Crypto Agility Strategy Consultant to lead the development and implementation of a comprehensive crypto agility strategy. This strategy will ensure our organization can swiftly adapt its cryptographic protocols in response to evolving threats and advancements, particularly the emergence of quantum computing post-quantum cryptography (PQC).
What You Will Do:
• Conduct a thorough analysis of the current cryptographic landscape, including trends, vulnerabilities, and the threat posed by quantum computing.
• Evaluate clients existing cryptographic infrastructure and its susceptibility to potential attacks.
• Develop a comprehensive crypto agility strategy that outlines a roadmap for adopting new, more secure cryptographic algorithms as they become standardized.
• Define key considerations for crypto agility, including modular design principles, monitoring, and risk assessment methodologies.
• Develop methodologies for identifying cryptographic algorithms used in various systems and applications, including manual analysis and automated tools.
• Recommend strategies for prioritizing PQC (post-quantum cryptography) algorithm migration based on criticality and security risks.
• Collaborate with IT teams, application owners, and security personnel to ensure the crypto agility strategy aligns with organizational needs and technical feasibility.
• Develop a communication plan to educate stakeholders on the importance of crypto agility and the migration process to new algorithms.
• Recommend tools and resources to support the ongoing implementation and maintenance of the crypto agility strategy.
• Stay updated on the latest advancements in cryptography, PQC (post-quantum cryptography) algorithms, and industry best practices.
Qualifications:
• Minimum 7+ years of experience in information security or a related field.
• Strong understanding of Public Key Infrastructure (PKI) including technology, standards, and implementations, with experience managing, configuring, or supporting a PKI certificate authority
• Expertise in designing, engineering, implementing, operating and supporting a Cryptographic Infrastructure consisting of such elements as; Enterprise Key Management System (EKMS), Public Key Infrastructure (PKI), Validation Authority (VA), Hardware Security Modules (HSM) for Data-at-Rest, Data-in-Transit and Data-in-Use.
• In-depth knowledge of cryptographic algorithms, their applications (e.g., digital signatures, encryption, key exchange), and their vulnerabilities.
• Experience in conducting security assessments and threat modeling.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills to collaborate effectively with diverse stakeholders.
• Experience working with cryptographic scanning tools and security frameworks is a plus.
• Strong knowledge of post-quantum cryptography (PQC) concepts.
About the Opportunity
We are seeking a highly experienced Crypto Agility Strategy Consultant to lead the development and implementation of a comprehensive crypto agility strategy. This strategy will ensure our organization can swiftly adapt its cryptographic protocols in response to evolving threats and advancements, particularly the emergence of quantum computing post-quantum cryptography (PQC).
What You Will Do:
• Conduct a thorough analysis of the current cryptographic landscape, including trends, vulnerabilities, and the threat posed by quantum computing.
• Evaluate clients existing cryptographic infrastructure and its susceptibility to potential attacks.
• Develop a comprehensive crypto agility strategy that outlines a roadmap for adopting new, more secure cryptographic algorithms as they become standardized.
• Define key considerations for crypto agility, including modular design principles, monitoring, and risk assessment methodologies.
• Develop methodologies for identifying cryptographic algorithms used in various systems and applications, including manual analysis and automated tools.
• Recommend strategies for prioritizing PQC (post-quantum cryptography) algorithm migration based on criticality and security risks.
• Collaborate with IT teams, application owners, and security personnel to ensure the crypto agility strategy aligns with organizational needs and technical feasibility.
• Develop a communication plan to educate stakeholders on the importance of crypto agility and the migration process to new algorithms.
• Recommend tools and resources to support the ongoing implementation and maintenance of the crypto agility strategy.
• Stay updated on the latest advancements in cryptography, PQC (post-quantum cryptography) algorithms, and industry best practices.
Qualifications:
• Minimum 7+ years of experience in information security or a related field.
• Strong understanding of Public Key Infrastructure (PKI) including technology, standards, and implementations, with experience managing, configuring, or supporting a PKI certificate authority
• Expertise in designing, engineering, implementing, operating and supporting a Cryptographic Infrastructure consisting of such elements as; Enterprise Key Management System (EKMS), Public Key Infrastructure (PKI), Validation Authority (VA), Hardware Security Modules (HSM) for Data-at-Rest, Data-in-Transit and Data-in-Use.
• In-depth knowledge of cryptographic algorithms, their applications (e.g., digital signatures, encryption, key exchange), and their vulnerabilities.
• Experience in conducting security assessments and threat modeling.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills to collaborate effectively with diverse stakeholders.
• Experience working with cryptographic scanning tools and security frameworks is a plus.
• Strong knowledge of post-quantum cryptography (PQC) concepts.
group id: apexsan
