-
View all jobs
Join Our Team at K20S Information Technology Est!
Data Security Engineer Position Available
Location: Qatar, Onsite
Experience Level: 5-7 Years
Contract Duration: 1 Year (Renewable)
Mandatory Experience In Banking Sector
Priority for Immediate Joiners
Position Summary
We are in search of an experienced Data Security Engineer with specialized knowledge in Utimaco Hardware Security Modules (HSM) or comparable vendor solutions, Key Management Systems (KMS), Payment Security measures, and Public Key Infrastructure (PKI). The selected candidate will ideally possess 5-7 years of substantial experience in safeguarding critical data systems, particularly within the banking and financial services domains. A solid background in cryptography, combined with a proven ability to deploy, manage, and optimize security solutions for sensitive information, is essential for this role.
Key Duties
Data Security Engineer Position Available
Location: Qatar, Onsite
Experience Level: 5-7 Years
Contract Duration: 1 Year (Renewable)
Mandatory Experience In Banking Sector
Priority for Immediate Joiners
Position Summary
We are in search of an experienced Data Security Engineer with specialized knowledge in Utimaco Hardware Security Modules (HSM) or comparable vendor solutions, Key Management Systems (KMS), Payment Security measures, and Public Key Infrastructure (PKI). The selected candidate will ideally possess 5-7 years of substantial experience in safeguarding critical data systems, particularly within the banking and financial services domains. A solid background in cryptography, combined with a proven ability to deploy, manage, and optimize security solutions for sensitive information, is essential for this role.
Key Duties
- HSM Integration & Management: Plan, implement, configure, and sustain Utimaco HSMs for the secure storage and processing of cryptographic keys. Guarantee secure key generation, storage, and application in compliance with banking regulations.
- Key Management Systems (KMS): Design and operationalize KMS to facilitate key lifecycle management including creation, distribution, rotation, and deletion. Enforce advanced encryption practices prioritizing security, efficacy, and regulations.
- Payment Security Execution: Ensure the safety of payment transactions throughout their lifecycle using encryption, tokenization, and key management protocols. Formulate and uphold standards that comply with PCI DSS, EMV, and ISO 20022, while also securing real-time payments, SWIFT transactions, and digital banking services.
- PKI Deployment & Management: Direct the management of Public Key Infrastructure (PKI), which includes designing and overseeing certificate authorities (CA), subordinate CAs, and registration authorities (RA). Administer the lifecycle of certificates and manage certificate revocation lists (CRLs) along with the secure distribution of digital certificates.
- Banking Data Encryption: Develop and apply encryption methods for crucial banking data in both static and dynamic states, ensuring compliance with national and international financial regulations, such as GDPR, FFIEC, and Basel III. Utilize algorithms such as AES, RSA, and ECC for peak data safeguarding.
- Security Enhancement: Conduct ongoing security strengthening, audits, and assessments of risks associated with HSMs, KMS, PKI, and payment security infrastructures. Identify potential weaknesses and fortify cryptographic systems against attacks.
- Compliance & Risk Management: Guarantee that all cryptographic actions conform to industry and banking standards like ISO 27001, PCI DSS, NIST SP 800-57, FIPS 140-2, and eIDAS. Collaborate with internal auditors to align practices with risk management and data protection mandates.
- Incident Handling & Monitoring: Offer expert support during cryptographic system-related security incidents. Implement proactive monitoring and logging to identify irregularities or breaches in data encryption frameworks.
- Performance Enhancement: Optimize the efficiency of cryptographic hardware and associated software systems to accommodate high transaction volumes commonly seen in banking contexts, ensuring low latency and high throughput for key management and cryptographic processes.
- HSM Proficiency: Expertise with Utimaco HSM platforms such as CryptoServer Se, CSe-Series, and CSeC-Series, especially regarding key hierarchy configuration, secure key injection, and segmentation for diverse security zones.
- KMS Knowledge: Profound understanding of enterprise KMS systems like Gemalto SafeNet, Thales CipherTrust, or AWS KMS, with capabilities in managing complex key hierarchies and ensuring secure key delivery and utilization across the organization.
- Payment Security Standards: Strong grasp of securing payment systems under PCI HSM, EMV, 3-D Secure, SWIFT guidelines, with hands-on experience in crafting secure payment frameworks and utilizing Hardware Security Modules to protect cryptographic keys used in transaction authorization and tokenization frameworks.
- Cryptography Basics: Comprehensive foundational knowledge of cryptography, including AES, RSA, ECC, SHA-2, SHA-3, HMAC, alongside practical experience employing symmetric and asymmetric encryption techniques.
- PKI and Certificate Oversight: Significant experience with PKI ecosystems, in managing X.509 certificates, and familiarity with OCSP, SCEP, and LDAP for the validation and revocation of certificates.
- Academic Background: Bachelor’s or Master’s degree in Computer Science, Information Security, or a related discipline.
- Professional Experience: Minimum of 5-7 years of dedicated experience working with HSM, KMS, PKI, and Payment Security technologies, particularly in environments demanding high security and compliance, such as banking and financial services.
- Certifications: Certifications like CISSP, CISM, CCSP, PCI DSS QSA, or any specialized certifications in HSM and KMS technologies (e.g., Utimaco Certified HSM Specialist) are strongly recommended.
- Banking Sector Familiarity: Extensive experience in the security of banking and financial transaction scenarios, with a deep understanding of regulatory obligations like PCI DSS, PSD2, SWIFT CSP, and Basel III.
- Availability: Candidates must be ready for immediate engagement or with a minimal notice period.
- Analytical Skills: Ability to dissect complex cryptographic architectures and pinpoint weaknesses and areas for enhancement in information security processes.
- Team Player: Documented adeptness in collaborating with diverse teams, including IT infrastructure, compliance, and software implementation teams, to forge holistic data security strategies.
Key Skills
Ranked by relevance
pci dss
dss
swift
storage
cissp
gdpr
cism
ccsp
nist
aws
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
DevSecOps Engineer (Remote EMEA)
2026-05-24
Full-time
Not Applicable
Singapore
IT Services
Engineering
View Job Details
Related
Full Stack Engineer — Alinea Invest
2026-05-26
Full-time
Not Applicable
United States
Human Resources Services
Engineering
View Job Details
Related
Software Engineer
2026-05-24
Full-time
Entry
United States
Human Resources Services
Engineering
Login to Apply
- Posted
- Feb 19, 2025
- Type
- Full-time
- Level
- Mid-Senior
- Location
- Doha
- Company
- Timely Find
Industries
Human Resources Services
Categories
Information Technology
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
DevSecOps Engineer (Remote EMEA)
2026-05-24
Full-time
Not Applicable
Singapore
IT Services
Engineering
View Job Details
Related
Full Stack Engineer — Alinea Invest
2026-05-26
Full-time
Not Applicable
United States
Human Resources Services
Engineering
View Job Details
Related
Software Engineer
2026-05-24
Full-time
Entry
United States
Human Resources Services
Engineering