Key Management Buildout Developer

We are seeking a skilled Key Management Buildout Developer in developing deploying configuring and managing software within cloud platforms such as AWS and Azure and their container services (EKS AKS GKE).The Ideal candidate has experience with Cloud Platforms (AWS Azure) for secure automation scripting API development and integrating cryptographic solutions within financial or highly regulated environments.

Required Qualifications:
Candidate must be located within commuting distance of Richardson TX or Atlanta GA or Raleigh NC or be willing to relocate to the area. This position may require travel to project locations.
Bachelors degree or foreign equivalent required from an accredited institution. Will also consider three years of progressive experience in the specialty in lieu of every year of education.
At least 4 years of Information Technology experience
Strong understanding of architecture patterns for resiliency disaster recovery performance and scalability. This role will focus on integrating key management systems (KMS) public key infrastructure (PKI) and hardware security modules (HSMs) with enterprise applications cloud environments and DevSecOps workflows.

Responsibilities:
Integration & Development

• Design and implement integrations between cryptographic key and certificate management systems and enterprise applications cloud platforms and security tools.
• Develop and maintain APIs microservices and automation scripts to streamline cryptographic operations.
• Enable seamless integration with multi-cloud key management services (AWS KMS Azure Key Vault OCI KMS)
• Collaborate with security architects application teams and DevSecOps engineers to embed encryption and certificate management into CI/CD pipelines.

• Automate key lifecycle processes such as key generation rotation distribution revocation and decommissioning.
• Implement certificate automation solutions (ACME protocol automated issuance/renewal via API-driven PKI).
• Build monitoring and alerting mechanisms to detect cryptographic anomalies and improve operational efficiency.

• Ensure automation and integrations align with cryptographic policies compliance and regulations (PCI DSS GDPR FIPS 140-2/3) and security best practices.
• Work closely with risk and compliance teams to provide audit trails and access control mechanisms for key and certificate operations.
• Assist in vulnerability management and patching of cryptographic components and automation workflows.

• Troubleshoot integration and automation issues ensuring high availability and reliability of cryptographic services.
• Stay up to date on emerging encryption technologies cloud security trends and automation frameworks.
• Provide technical documentation and training for internal teams on cryptographic integration best practices.

• 8 years of experience in software development with a focus on integration secured coding practices data security and cryptographic algorithms (AES RSA ECC) within a financial institution or other highly regulated industries.
• 5 years in Python Ruby PowerShell Bash C# or Java
• Proven experience with API design service discovery and communication patterns (e.g. REST messaging queues) with a focus on data security.
• Strong understanding of DevOps practices such as Continuous Integration/Continuous Delivery (CI/CD) and Infrastructure as Code (IaC).
• HashiCorp Vault AWS KMS Azure Key Vault or OCI KMS.
• Strong understanding of KMS concepts key management lifecycle and hardware security modules (HSMs)
• Terraform Ansible and Chef or equivalent.
• Familiarity with security frameworks such as NIST 800-57 ISO 27001 or PCI DSS

Candidates authorized to work for any employer in the United States without employer-based visa sponsorship are welcome to apply. Infosys is unable to provide immigration sponsorship for this role at this time.

The job entails sitting as well as working at a computer for extended periods of time. you should be able to communicate by telephone email or face to face. Travel may be required as per the job requirements.