Cloud Crypto Architect

Work Type:Hybrid – 3 days Work From Office

Experience: 8-10 years 

Job Summary: We are seeking a highly skilled and experienced Cloud Crypto Architect with 8-10 years of experience to join our team in Bangalore. In this pivotal role, you will be responsible for designing, implementing, and maintaining robust cryptographic solutions within our cloud environments. You will play a crucial part in ensuring the security and integrity of our data and digital assets, working with cutting-edge technologies and collaborating with various teams to define and enforce data protection policies. 

Key Responsibilities: 

  Cryptographic Expertise: 

• Possess a deep understanding of core cryptographic concepts and principles. 

• Demonstrate familiarity with Key Management standards and the cryptographic services supported by various Cloud Service Providers (CSPs). 

• Apply expertise in cryptography for data protection and secure key management within diverse cloud environments. 

• Understand and implement Key Exchange mechanisms between CSPs and their customers. 

 Solution Design & Development: 

• Prototype and build GitHub & Terraform Modules for: Key Management Systems, Keys, Certificates, Certificate Authorities, and any cryptographic asset. 

• Design, build, and deploy custom applications for data protection. 

 Policy & Compliance: 

• Assist with the definition and implementation of Service Control Policies related to data protection and cryptography. 

• Support and assist with service certifications (e.g., ISO 27001, SOC 2, HIPAA, PCI DSS where applicable). 

• Validate existing services, Terraform Enterprise (TFE) modules, and other resources to ensure adherence to data protection requirements. 

  Documentation & Best Practices: 

• Create, maintain, and improve existing documentation related to cryptographic architectures, policies, and procedures. 

• Assist with the generation of playbooks for cryptographic operations and incident response. 

• Conduct audits to ensure compliance and identify areas for improvement in cryptographic practices. 

Required Qualifications: 

• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent practical experience). 

• 8-10 years of progressive experience in cloud security, with a strong focus on cryptography and key management. 

• Proven experience with major Cloud Service Providers (e.g., AWS, Azure, GCP) and their cryptographic services. 

• Strong understanding of security best practices, industry standards, and regulatory compliance frameworks. 

• Proficiency in scripting/automation languages (e.g., Python, Go) and Infrastructure as Code (IaC) tools like Terraform. 

• Experience with version control systems, particularly GitHub. 

• Excellent problem-solving skills and the ability to work independently and as part of a team. 

• Strong communication and interpersonal skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences. 

Preferred Qualifications: 

• Master’s degree in a relevant field. 

• Relevant industry certifications (e.g., CISSP, CCSP, AWS Certified Security – Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer). 

• Experience with Hardware Security Modules (HSMs) and other cryptographic hardware. 

• Familiarity with containerization technologies (Docker, Kubernetes). 

• Experience with CI/CD pipelines.