Thales HSM Developer

  • Charlotte, NC
  • Posted 20 hours ago | Updated 11 hours ago

Overview

On Site
$80.0000 - $90.0000
Full Time

Skills

Hands-on experience with Thales HSMs (Luna or payShield)
Strong programming skills in Python
Deep understanding of cryptographic algorithms
Experience with cloud-based key management services

Job Details

Position Details:


Position: Thales HSM Developer


Location: Charlotte, Jersey City, Richmond, and Jacksonville


Pay Range: $80 - $85/hr.


Duration: 12-18 Months (Possibility of Full-Time Conversion)



About the Role:


We are seeking a highly skilled and experienced Thales HSM Developer to join our security engineering team. In this role, you will design, implement, and maintain cryptographic key management systems that secure sensitive banking data. You'll work closely with application teams, architects, and vendors to integrate Thales Hardware Security Modules (HSMs) into enterprise solutions while ensuring compliance with industry standards like NIST, ISO 27001, and PCI DSS.


Key Responsibilities:



  • Design and develop secure applications using Thales Luna or payShield HSMs.

  • Build and support key management solutions aligned with organizational security policies.

  • Manage the full lifecycle of cryptographic keys generation, distribution, storage, and rotation.

  • Respond to and remediate incidents involving compromised or corrupted cryptographic assets.

  • Collaborate with cross-functional teams on cryptographic integration and automation.

  • Document architecture, configurations, workflows, and incident resolutions.

  • Conduct training sessions and promote awareness around cryptographic best practices.


Required Skills:



  • Strong hands-on experience with Thales HSMs (Luna or payShield), including integration and development.

  • Development experience in Python (primary), and optionally Java, Go, or C++.

  • Deep understanding of cryptographic algorithms, protocols, and secure key lifecycle management.

  • Expertise in HSM, KMS, PKI, and related security technologies (Utimaco, Entrust, CipherTrust Manager, etc.).

  • Familiarity with cloud key management tools like AWS KMS and Azure Key Vault.

  • Strong experience with scripting and automation (Perl, PowerShell, or Python).

  • Working knowledge of Linux/Windows environments and monitoring tools (Splunk, ELK, Prometheus).

  • Hands-on experience with DevOps tools (CI/CD pipelines, Ansible, Terraform).

  • Familiarity with incident tracking systems like ServiceNow or Remedy and Agile methodologies using JIRA.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.