Job Description:

Position Description:

Leads research, design, testing, evaluation, benchmarking, and education on quantum security architecture to ensure the business and its customers’ data remain secure against current and future vulnerabilities. Identifies and communicates current and emerging security threats and how quantum approaches, advances in quantum computing, the internet, and PII theft, may reduce, mitigate, or prevent these threats. Explores applications to make classical approaches quantum secure, using QRNG in for key generation, QKD and post-quantum cryptography for secure key distribution, and secure unidirectional data transmission. Identifies security design gaps in existing and proposed architectures and recommends changes or enhancements with a primary focus on where quantum could provide advantage. Defines quantum and quantum-inspired information architecture for key domains (including HR, Legal, Risk and Compliance, Finance, Cybersecurity, Infrastructure, and Technology Management). Develops and articulates robust and innovative quantum security technical solutions that apply to Cloud-based and Cloud-integrated services, network servers, endpoints, and databases, and adapts security architecture elements to mitigate threats as they emerge.

Primary Responsibilities:

• Provides leadership in quantum and quantum-inspired information security technologies.
• Provides technical expertise and mentorship to cybersecurity engineers and analysts.
• Delivers quantum information security education and presentations with internal/external clients and key stakeholders.
• Defines alternative quantum architectural strategies with security focus to help ensure system and solutions are secure by design.
• Evaluates quantum security related tools and technologies and recommends appropriate implementation methodologies to ensure appropriate security of ecosystem.
• Provides technical leadership and design guidance to advance information security, using the evolving quantum computing technology stack and collaborates with business units to share insights and offer informed guidance.
• Collaborates with developers to develop, build, and test quantum secure solutions and algorithms.
• Identifies relevant benchmarks to assess performance of solutions.
• Defines, builds, and tests experimental/research-based quantum security solutions that align with internal security and/or regulatory requirements.
• Participates in code reviews, conducts vulnerability testing, validates remediation efforts, and enhances the secure software development lifecycle through quantum-inspired and quantum-based architectures.
• Collaborates with enterprise architects to establish and maintain enterprise standards, while conducting quantum information security proof-of-concepts to ensure those standards remain current.
• Presents at conferences and in presentations.

Education and Experience:

Bachelor’s degree in Computer Science, Engineering, Information Technology, Information Systems, Physics, or a closely related field (or foreign education equivalent) and six (6) years of experience as a Director, Architecture - Digital Assets (or closely related occupation) developing large scale quantum safe security solutions for data communication, identity, access management, digital assets storage, and processing, in a financial services environment.

Or, alternatively, Master’s degree in Computer Science, Engineering, Information Technology, Information Systems, Physics, or a closely related field (or foreign education equivalent) and four (4) years of experience as a Director, Architecture - Digital Assets (or closely related occupation) developing large scale quantum safe security solutions for data communication, identity, access management, digital assets storage, and processing, in a financial services environment.

Skills and Knowledge:

Candidate must also possess:

• Demonstrated Expertise (“DE”) identifying digital assets, data, and processes dependent on cryptography, using Crypto-Detector, pqcscan, CrypTool, or IBM Quantum Safe Explorer; building threat mitigation strategy using classical and post-quantum cryptography methods -- Rivest-Shamir-Adleman (RSA) and Elliptic Curve Digital Signature Algorithm (ECDSA), Module-Lattice group of algorithms (ML-*), Stateless-Hash-based Digital Signature Algorithm (SLH-DSA), FALCON NTRU Digital Signature Algorithm (FN-DSA), and DieHard suite of tools; evaluating the applicability of new technologies, including quantum random number generators, NIST-approved post-quantum cryptography algorithms, and quantum key distribution, for securing digital assets platforms, using DieHard suite of tools, Crypto-Detector, or IBM Quantum Safe Explorer.
• DE architecting and designing security architecture and controls to protect digital assets, data, and processes, using The Open Group Architecture Framework (TOGAF) and Zachman frameworks, Unified Modeling Language (UML), Visio Professional, or Sparx Enterprise Architect tools; developing key management and transaction processing systems for digital assets, using Java, C/C++, Identity and Access Management (IAM) policies, scripts, and tools and technologies (SAML, OAuth, Role-Based Access Control (RBAC) or Attribute-Based Access Control (ABAC), and Federated Identity); performing docker container configurations using code management, and building and deployment tools (GitHub or GitLab, Artifactory, Jenkins, and Kubernetes); securing client API configuration using post-quantum cryptography security layer.
• DE building end-to-end quantum safe systems integration solutions by implementing Bell state measurements, using quantum photonics tools (Thorlabs optical half- and quarter-wave plates, Swabian Instruments time taggers, Aurea Twin-Photon Source, or Zurich Instruments Arbitrary Waveform Generator); implementing reliable propagation of qubit states among integration components, performing integrity checks of communication lines, and providing estimation of quantum bit error rate (QBER), using optical photonics tools and optical time-domain reflectometer (OTDR); adjusting communication line settings using QKD equipment controls; and integrating heterogeneous quantum networks using REST services secured with post-quantum cryptography.
• DE building complex cryptographic solutions using multi-party computation (MPC), zero-knowledge proofs (ZkP), secret shares for the backup and recovery of cryptographic key materials (Shamir’s Secret Shares), quantum security, integrity verification of communication lines (using quantum photonics components and OTDR), and reliable, truly random entropy sources (IDQ Quantis)); integrating remote clusters of QKD-secured communication lines with post-quantum safe cryptography, using cryptographic libraries (openssl and Bouncy Castle); and implementing secure integration of offline digital assets storages with online monitoring systems, using Splunk.

Salary: $198,125.00 to $208,125.00\year

#PE1M2

#LI-DNI

Certifications:

Category:

Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.