Key Admin

IDEMIA, the global leader in Augmented Identity, provides a trusted environment enabling citizens and consumers alike to perform their daily critical activities (such as pay, connect and travel), in the physical as well as digital space.

In our digital security industry digital keys are used everywhere: payments, authentication, access management, fleet management, etc. Some of those keys are critical assets and must be kept secret at all cost as any leak could result in immense economical and brand damages.

Those critical keys cannot be stored on regular servers as it would be easy for an attacker to dump them from memory or hard drive. They are stored in dedicated security devices: HSMs.

As soon as one starts using HSMs, one wonders how to manage keys. It is well and good to use HSMs to store keys securely. But there is much more to keys management than storage. How to generate keys in a safe and secure way? Where keys need to be exchanged with third-parties, how to secure this exchange from the third-party HSM to one's HSM? Etc.

Key Management is a set of rules, processes and tools which allow the whole life-cycle of keys (generation, exchange, backup, restore, delete, replacement, etc.) to be performed in a secure and auditable way.

We are looking for a person who will be responsible for Key Management activities as a Key Admin.


Requirements:
-Practical knowledge of cryptographics keys (symmetric/asymmetric)
-Ability to precisely execute security procedures
-Cross-knowledge of cybersecurity aspects
-Experience in Linux
-Very good communication skills (fluent English)
-Any experience in docker is a plus

Your tasks:
-Ensure that all key management procedures and policies are respected while working with keys
-Take responsibility of key generation, exchange, backup, restore, delete, replacement etc.
-Applying patches on HSM servers
-Representing Key Management Team during security audits
-Taking active part in troubleshooting the HSM is