Cryptographic Policy Analyst

Fidelity National Financial, Inc. (NYSE: FNF) is a leading provider of title insurance and transaction services to the real estate and mortgage industries. FNF is the nation's largest title insurance company through its title insurance underwriters - Fidelity National Title, Chicago Title, Commonwealth Land Title, Alamo Title and National Title of New York - that collectively issue more title insurance policies than any other title company in the United States. More information about FNF can be found at fnf.com.

POSITION OVERVIEW

Fidelity National Financial (FNF) is seeking a Cryptographic Policy Analyst to join its Information Security Office (ISO). This position will be reporting to the Director of Cryptography. As a Cryptographic Policy Analyst, you will evangelize the Cryptographic Protections culture by partnering with Security Architects, Security Engineers, Program Managers, Infrastructure Engineers, and Developers to scale out and secure their service offerings. Providing adaptive guidance to encrypt the associated resources.

To be successful in this position, you will need a deep technical understanding of cloud environments, DevOps practices, and the ability to learn new information at a rapid pace. A strong track record in infrastructure as code and configuration management is critical, but the willingness and drive to improve our Cryptographic practices overall is even more important.

LOCATION

• This role can sit 100% remote.

DUTES & RESPONSIBILIES

• Investigates and documents cryptographic security findings based on approved usage related to our security policies and procedures.
• Exception Identification: identify situations where the standard cryptographic policies may not be applicable or efficient.
• Exception Evaluation: evaluate the potential risks and benefits associated with granting an exception.
• Exception Documentation: document all approved exceptions, including the reasons for the exception and any associated risks for the requestor to submit an exception request.
• Exception Review: review the approved exceptions to determine if they are still necessary or if the current standard is applicable.
• Collaborates with IT and ISO teams to identify and remediate security findings related to weak or misconfigured cypher suites, modes, algorithms, key size, etc.

MINIMUM REQUIREMENTS

• Bachelor of Science in Computer Science, Mathematics, Engineering or equivalent experience or education
• Requires 1 – 3+ years of experience in a hands-on Cryptography role with a demonstrated proficiency of automating infrastructure and application deployments.
• Demonstrated skill in network, infrastructure, and application cryptography implementations.
• Proficiency in working in both Linux and Windows environments.
• Understanding of cloud computing platforms and cloud-based infrastructure design and operation
• Understanding of networking, routing, and web related protocols
• Functional working knowledge of: Cyber Security Fundamentals (Familiarity with key concepts of Vulnerability Management, Network Security/Secure Transmission Management, Data Loss Prevention, Identity Access Management, Threat Intelligence, Penetration testing, IT Risk Management)
• Strong business and technology aptitude with a willingness to learn and understand business and software solutions.
• Excellent verbal and written communications including technical writing capabilities.
• Highly motivated with strong organizational, analytical, decision making, and problem-solving skills.
• Ability to effectively handle multiple priorities, prioritize and execute tasks in a high-pressure environment.
• High level of professionalism, confidence, and ability to build credibility with team members and business partners.

PREFERRED EXPERIENCE

• Demonstrated scripting skills in one or more popular languages like bash, python, or PowerShell.
• Experience with Azure DevOps.
• Understanding of container technologies tooling (such as Docker, Kubernetes, Helm)
• Experience with Microsoft Azure
• Current Cybersecurity focused certification (e.g., CCSP, CISSP, CCS, or ECES) is a PLUS

EQUAL OPPORTUNITY POLICY

FNF, its affiliates and subsidiaries, is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, protected veteran status, national origin, sexual orientation, gender identity or expression (including transgender status), genetic information or any other characteristic protected by applicable law.