Information Security Engineer focusing on Identity & Access Management and SSO at Westfield. Design, operate, and mature enterprise authentication and federation capabilities.
About the role
- Cyber Security Engineer at GM focused on design and operation of PKI and secrets management systems. Collaborating across teams to shape secure access and trust across platforms.
Responsibilities
- Architecting and operating scalable, secure PKI and secrets management services.
- Leading design decisions that shape internal trust models and access to sensitive data.
- Developing and maintaining policies, processes, and controls for key and secrets lifecycle management.
- Collaborating across engineering, infrastructure, and leadership teams to deliver robust cryptographic systems.
- Mentoring team members and driving technical excellence across the organization.
- Advising leadership on long-term security architecture strategies.
- Participating in on-call rotations for global, critical services.
Requirements
- Bachelor’s degree in Computer Science, Mathematics, Physics, or equivalent experience.
- Proven experience in enterprise security engineering or Site Reliability Engineering (SRE).
- Hands-on experience with secrets management platforms (e.g., HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, BeyondTrust).
- Strong understanding of public-key cryptography, PKI, and cryptographic protocols.
- Experience designing and operating production-level PKI systems.
- Proficiency with infrastructure-as-code tools (e.g., Terraform).
- Familiarity with cloud platforms (AWS, GCP, Azure).
- Experience with containerization, orchestration, and CI/CD workflows.
- Strong communication skills and ability to present technical concepts to leadership.
- Solid threat modeling and security architecture skills.
- HashiCorp Vault certification or demonstrable expert-level proficiency (preferred).
- Deep expertise in HashiCorp Vault and Terraform (preferred).
- Experience scaling backend systems and implementing secure hardware (HSM, TPM, TEE, etc.) (preferred).
- Familiarity with modern authentication protocols (OAuth 2.0, OIDC, WebAuthn/FIDO2, Zero Trust) (preferred).
- Experience with remote attestation and secure enclave technologies (preferred).
- Proficiency in Go, Rust, Python, or Node.js (preferred).
Benefits
- From day one, we're looking out for your well-being–at work and at home–so you can focus on realizing your ambitions.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Security Engineer responsible for operational support and development activities with Ping Identity. Collaborate with global teams to strengthen cybersecurity and improve customer satisfaction.
Application Security Specialist focusing on security in software development lifecycle at Insight Investment in Manchester, driving DevSecOps practices across teams.
Cyber Security Engineer supporting mission - critical DoD contract at CACI. Involves reviewing infrastructure changes and implementing security measures in a cloud - based environment.
Security Incident Management Analyst coordinating information security incidents. Overseeing cyber incident response and providing guidance to senior management within a leading industrial software company.
Customer Security Engineer managing end - to - end pentesting services at Aikido Security. Ensuring customer value and addressing vulnerabilities for a developer - first security product.
Cybersecurity GRC Specialist developing compliance standards across IT environments at Axpo Group. Collaborate with teams to safeguard critical systems and implement cybersecurity policies in energy sector.
Lead Cybersecurity Specialist managing enterprise cybersecurity programs at NexThreat. Overseeing cybersecurity research, engineering, and technical services while ensuring federal compliance.
Manager overseeing Netflix's global physical security technology design and build programs across multiple business verticals. Leading a team to ensure best - in - class security systems and vendor management.
Information System Security Officers maintaining IT security posture through collaboration with stakeholders. Supporting system security policies and risk management for national cybersecurity objectives.