Cyber Security Engineer Senior

As the world works and lives faster, FIS is leading the way. Our fintech solutions touch nearly every market, company and person on the planet. Our teams are inclusive and diverse. Our colleagues work together and celebrate together. If you want to advance the world of fintech, we’d like to ask you: Are you FIS?

About the role: The Cyber Security Engineer is responsible for supporting the enterprise’s payment HSM infrastructure, cryptographic key-management operations, and data-protection technology stack. The analyst operates and maintains payment‑grade HSMs and related devices across secure data‑center environments, performing inspections, tamper checks, controlled access, and operational troubleshooting. In addition, this role supports enterprise data‑protection tools enabling encryption‑at‑rest and in‑motion across applications, databases, and cloud workloads.

About the team: The Data Protection Team is a core part of the Cybersecurity organization responsible for protecting sensitive enterprise data through a data‑centric security model. Our mission is to identify, secure, encrypt, classify, and govern data across applications, infrastructure, and cloud platforms, ensuring compliance with internal security standards and industry regulations. The team manages enterprise tools for data discovery, encryption, key management and HSMs. Cybersecurity Analyst Senior will be involved in state‑of‑the‑art tools to protect data at rest and in transit, on‑prem and cloud.

What you will be doing:

• Support and maintain payment HSMs used for key generation, loading, and translation.
• Coordinate HSM firmware upgrades, replacements, module swaps, and secure decommissioning following documented procedures.
• Ensure HSMs are housed in compliant, dual‑controlled, secured racks within data centers.
• Execute on‑site activities that cannot be performed remotely.
• Perform key‑generation, key‑component handling, secure storage, and distribution in accordance with split‑custody and dual‑control processes.
• Maintain complete inventories of HSMs, key tokens, smartcards, and tamper‑evident packaging.
• Support enterprise data‑protection tools and cloud‑based key/secret‑management platforms.
• Assist application teams with encryption integrations, configuration updates, and secure data‑flow enablement.
• Monitor and maintain operational health, alerting, and compliance posture for encryption services across hybrid environments.
• Ensure that all cryptographic operations align with internal standards and regulatory obligations.
• Ensure all HSM and key‑management activities meet PCI DSS, PCI PIN, FIPS 140‑2/3, and internal cybersecurity standards.
• Maintain detailed audit trails, logs, and procedural documentation for all cryptographic operations.
• Support internal and external audits by providing evidence, participating in walkthroughs, and ensuring timely remediation.
• As a Cybersecurity Analyst Senior, you will be working closely with Cybersecurity, Payments Engineering, Data Center Operations, Cloud teams, and external partners to ensure secure and timely delivery of key‑management services.
• Participate in change‑control processes, incident response, and coordinated maintenance windows for HSM‑related work.
• Provide SME support regarding cryptographic practices, secure‑data handling, and encryption technologies.

What you will need:

• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience.
• 5‑7 years of experience in cybersecurity, cryptography, or payment‑security operations.
• Hands‑on experience with HSMs (e.g., Payshield, Luna, Atalla) and key‑management procedures.
• Understanding of PCI DSS, PCI PIN, FIPS 140‑2/3, and secure key‑handling standards.
• Familiarity with enterprise encryption and data‑protection tools (CipherTrust, Voltage, cloud KMS).
• Ability to work in secure data‑center environments under dual‑control and high‑assurance protocols.
• Strong communication, documentation, and troubleshooting skills.

Added bonus if you have:

• CISSP Certification
• Experience using data protection tools such as Voltage and CipherTrust

What we offer you:

• Flexible and creative work environment
• Diverse and collaborative atmosphere
• Professional and personal development resources
• Opportunities to volunteer and support charities
• Competitive salary and benefits

Privacy Statement: FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

Sourcing Model: Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.