HSM Engineer â Cybersecurity Engineering-(Onsite)
HSM Engineer â Cybersecurity Engineering-(Onsite)
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Greetings!
Our client is the worlds largest credit union with over 10 million members over $149 billion in assets and over 23000 employees.
Our client Navy Federal Credit Union is seeking an HSM Engineer Cybersecurity Engineering15345Onsite in Vienna VA/Pensacola FL. You seem to have a rocksolid profile and your overall background seems to be a great match for the position.
Please review the below information for clarity on the position description.
Description:
Location: 100% onsite Vienna VA/Pensacola Florida (Onsite 40 hours per week)
Note: Remote work is not permitted for this role.
- Must be able to work inside a secure room environment and adhere to physical access policies
Position Summary:
We are seeking a highly skilled and motivated HSM Engineer to join our Cybersecurity Engineering team. This role will support the implementation management and operational oversight of Hardware Security Modules (HSMs) and related cryptographic systems. The ideal candidate will have extensive experience working with data encryption technologies secure key management and enterprisescale infrastructure.
The engineer will also support secure room operations including physical device handling inventory control and chainofcustody protocols. This is a handson onsite role located in Pensacola FL requiring physical presence for secure room access and compliance activities.
Primary Responsibilities:
- Research evaluate design implement and maintain HSMbased security solutions
- Support secure room operations including device handling physical access control and chainofcustody management
- Implement encryption solutions for data at rest and in transit including TDE for databases (Oracle SQL Server etc.)
- Administer and maintain Hardware Security Modules (Futurex Thales Entrust etc.)
- Develop and document processes for HSM lifecycle management key ceremonies and system hardening
- Support cryptographic key management systems (KMS) and key lifecycle practices
- Respond to incidents perform troubleshooting and contribute to secure operational uptime
- Maintain strong documentation inventory control records and asset tracking within the secure environment
- Collaborate with crossfunctional teams to stand up new security solutions and ensure alignment with compliance standards
- Develop and maintain technical diagrams SOPs and procedural documentation
- Monitor systems and implement alerting mechanisms for operational awareness
- Participate in audits access reviews and operational process assessments
Required Qualifications:
- 5 years of experience in cybersecurity system engineering or HSM management
- Strong experience with encryption solutions (data at rest/in transit TDE TLS etc.)
- Experience with HSMs and cryptographic infrastructure in large enterprise environments
- Solid understanding of encryption key management and cryptographic ciphers
- Handson experience with Windows and Unix/Linux operating systems
- Familiarity with virtualized environments and server management
- Experience supporting daily operations in a highly secure regulated environment
- Working knowledge of ServiceNow Microsoft Office and Excel (complex formulas and charting)
- Experience with physical security tools including safes access control systems and video surveillance
- Experience with chain of custody protocols and physical asset control
- Strong procedural writing skills and experience with process documentation
- Conceptual understanding of network architecture firewalls and subnets
Preferred Qualifications:
- CISSP or other cybersecurity certification (preferred not required)
- Experience with Key Management Systems (KMS) and key lifecycle platforms
- Familiarity with tools like Venafi CipherTrust or CodeSign Protect
- Knowledge of integrity monitoring alerting and operational security tooling
- Background in supporting regulated environments (e.g. PCI DSS NIST FFIEC)
Employment Type
Unclear
