Mandatory Skills:
* Thales HSM and CipherTrust experience
* Domain knowledge - key management and root key security
* Product / vendor knowledge - Thales HSM Luna, Thales CipherTrust. Certification is a great advantage
* Proven hands-on experience with integration / implementation or strong admin background. Candidates with remote software support background only are not fit to join such project in a timely manner, despite the knowledge of the product from a user perspective.
Scope: Thales CipherTrust Manager (CTM)
We are seeking an experienced KMS Integration Specialist to design, deploy, and manage a Key Management System (KMS) utilizing Thales CipherTrust Manager (CTM). This role will focus on integrating Thales CTM with Microsoft Active Directory (MSAD), PKI (Public Key Infrastructure), implementing a tenant domain concept, and leveraging KMIP (Key Management Interoperability Protocol) and DARE (Data at Rest Encryption). The ideal candidate will have in-depth knowledge of key management, cryptographic solutions, and the ability to ensure the system meets organizational security and compliance requirements.
* Deploy and configure Thales CipherTrust Manager (CTM) for centralized key management.
* Ensure proper integration of CTM with various security systems, including MSAD, PKI, and encryption solutions.
* Design and implement a tenant domain concept for multi-tenant key management environments, ensuring logical separation and secure access control.
* Set up and manage KMIP-based key management solutions for interoperable key management across multiple platforms and technologies.
* Configure KMIP clients to communicate securely with the Thales CTM and external encryption devices.
* Implement Data at Rest Encryption (DARE) using Thales CTM to protect sensitive data stored on various platforms.
* Strong experience with Thales CipherTrust Manager (CTM) and in-depth knowledge of key management protocols, including KMIP and DARE, and hands-on experience configuring and managing them.
Scope: Thales Luna Hardware Security Modules
We are seeking an experienced HSM Integration Specialist to upgrade and integrate Thales Luna Hardware Security Modules (HSMs) into PKI, Key Management Systems (KMS), and CyberArk environments. The ideal candidate will have deep expertise in hardware security modules, cryptographic systems, and secure integrations with enterprise security solutions. This role will play a critical part in enhancing the organization's cryptographic infrastructure to meet security and compliance requirements.
* Plan, execute, and validate upgrades of Thales Luna HSMs to the latest firmware and software versions.
* Configure Thales Luna HSMs to serve as the root of trust for Public Key Infrastructure (PKI).
* Configure and integrate Thales Luna HSMs with CyberArk for secure storage of privileged credentials.
* Design and implement integrations of Thales Luna HSMs with Thales CTM (KMS) solutions for secure key generation, storage, and distribution.
* Thales Luna HSM Certifications (preferred).
#J-18808-Ljbffr