Insight Global is looking for an HSM Engineer for the cybersecurity organization at a large financial institution. This person will be responsible for maintaining vendor security applications primarily related to cryptographic/security functions. This person will be required to maintain and enhance already-developed applications for hosted cryptographic solutions like key management, payment gateways, and general purpose HSMs along with integrating end-user applications to leverage these capabilities. This role may also include development of prototypes to system designs, working with database, operations, tech support and other areas throughout the development and implementation process. This role will also involve administering and managing cryptographic keys, including key lifecycle management, centrally managing keys with granular key management and proper access controls per our clients security standards and policy guidelines.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
Demonstrated experience in key lifecycle management, including understanding and implementing enterprise cryptography standards per industry standards.
Specific experience in KMS (Key Management Service) products like CipherTrust Manager, Payshield 10x, OKV or others
Implement Best practices per the Oasis KMIP 2 standards, EMVCo, Global Platform, Multos, ANSI, FIPS140-2, NIST SP 800-57
Desired Database encryption with MS SQL TDE, Oracle TDE with PKCS11 and KMIP compliant products.
Ability to implement REST API consoles example Postman, Insomnia.
Full-stack monitoring using log ingress solutions with Splunk and SNMP v3.0
Must have hands on experience with Windows/ Linux platform to work on Kubernetes and OpenShift or Container orchestration.
Strategize cloud migration and implementation of cloud HSM and cloud KMS using AKV, AWS, GCP etc
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.