Security Architect, Encryption

Connect, protect, and build everywhereSan Francisco, CA
4h
Match Resume

About The Position

Join Cloudflare’s Security Architecture Team with the following with the foll focus areas : Strategic Alignment: Translates the Organisations Cyber risk tolerance into specific technical blueprints and implements controls/prescriptive policies in mitigation/managing or remediating these risks Preventative Focus: Focuses on "shifting left" to fix architectural flaws before they become bigger risks or cost Technical Consulting: Acts as internal subject matter experts for Procurement (TPRM) and Engineering teams.

Requirements

  • Either advanced studies in Cybersecurity, Computer Science, Information Systems, or similar
  • Excellent written and verbal communication skills, including the ability to effectively collaborate with technical and senior business staff and management.
  • 12+ years of experience in information security, with 7+ years focused on applied cryptography and Public Key Infrastructure (PKI).
  • Expert-level knowledge of cryptographic primitives, algorithms (AES, RSA, ECC), hashing functions, and digital signature standards.
  • Proven experience designing and deploying Hardware Security Modules (HSMs) and enterprise Key Management Systems (KMS).
  • Strong understanding of regulatory and compliance frameworks related to data protection and packaging

Nice To Haves

  • Certifications: CISSP, CISM, or CCSP.
  • Experience with cloud-native KMS solutions (e.g., AWS KMS, Azure Key Vault, GCP Cloud KMS).
  • Worked on similar organisations in the past as Cloudflare

Responsibilities

  • Provide input on technical security requirements for new infrastructure and engineering initiatives.
  • Assist with documentation and maintenance of the corporate security architecture blueprints.
  • Participate in the design of robust PKI hierarchies (Root CAs, Intermediate CAs, Issuing CAs) and certificate policies, selecting appropriate hardware (HSMs) and software for scalable, secure deployments.
  • Provide security guidance and review of the deployment of encryption solutions across systems, applications, and networks.
  • Provide security guidance and review of the end-to-end lifecycle of cryptographic keys and digital certificates, including generation, secure storage, rotation, usage, backup, revocation and destruction.
  • Conduct analysis of existing encryption and management solutions to find weaknesses and identify gaps.
  • Ensure encryption implementations meet industry standards (e.g., NIST, FIPS) and compliance mandates (e.g., GDPR, HIPAA).
  • Document security requirements and architectural decisions.
  • Assist with defining security policies and standards, enforcing best practices, conducting risk assessments, and ensuring compliance with regulations.
  • Work with CISO, IT teams, developers, and engineers to implement secure designs.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Number of Employees

1,001-5,000 employees

Job Search Resources

Similar Security Architect, Encryption job opportunities

Security Engineer - Encryption, AVP
MUFG
MUFG • Jersey City, NJ11d • Hybrid
Security Engineer - Encryption, AVP
Mitsubishi UFJ Financial Group
Mitsubishi UFJ Financial Group • Jersey City, NJ8d • Hybrid
Security Architect
Experian
Experian • Costa Mesa, CA8d • Hybrid
Security Architect
Deloitte
Deloitte • Arlington, VA7d • $90,000 - $150,000
Security Architect
TEKsystems
TEKsystems • Honolulu, HI12d • $90,000 - $145,000 • Remote
Security Architect
Waystar
Waystar • Lehi, UT13d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service