About the role
Client is a global financial technology company that provides a wide range of solutions and services to the financial industry.
As a leading provider of technology solutions, Client offers a comprehensive suite of products and services designed to facilitate efficient banking operations, enhance customer experiences, and drive digital transformation. Its offerings encompass core banking systems, digital banking platforms, payment processing solutions, risk management tools, and data analytics capabilities.
Rate: $50/Hr
Job Description:
- HSM Engineer role will be responsible for designing, deploying, configuring, and maintaining Hardware Security Modules used to protect sensitive cryptographic keys and perform secure cryptographic operations.
- This role ensures the security, availability, and compliance of cryptographic infrastructure in alignment with industry standards, security policies, and regulatory requirements.
- HSM Administration & Operations
- Deploy, configure, and manage HSM devices (e.g., Thales, Entrust, Futurex, Utimaco)
- Maintain and update HSM inventory to ensure up-to-date tracking.
- Submit Firewall request to allow network traffic between HSM and client systems
- Manage HSM partitioning, remote HSM administration and auditing functions.
- Conduct firmware and software upgrades while maintaining operational continuity.
- Ensure HSM configurations meet compliance standards (PCI-DSS, PIN, HIPAA, GDPR, ISO 27001, etc.).
- Monitor for unauthorized access or anomalies in cryptographic operations.
- Participate in internal and external security audits.
- Work with development and infrastructure teams to integrate cryptographic services into business applications.
- Troubleshoot HSM integration issues with applications, APIs, and security services.
- Implement automated monitoring and alerting for HSM performance and health.
- Respond to cryptographic security incidents and investigate root causes.
- Provide on-call support for HSM-related issues and outages.
- Bachelor s degree in computer science, Information Security, or related field (or equivalent experience).
- 3–5 years of experience in HSM administration and/or cryptographic operations
- Hands-on experience with HSM vendors such as Thales, Entrust, Futurex, Utimaco, or SafeNet.
- Strong understanding of PKI, digital certificates, TLS/SSL, and key management practices.
- Familiarity with security standards: FIPS 140-2/140-3, NIST SP 800 series, PCI-DSS.
- Experience with scripting languages (Python, PowerShell, Bash) for automation.
- Cloud HSM experience (AWS CloudHSM, Azure Key Vault Managed HSM, GCP Cloud HSM).
- Certification such as CISSP, CISM, CCSP, or vendor-specific HSM certification.
- Experience with hardware cryptography in payment systems, banking, or government environments.
- Knowledge of secure application development and API security.
- Strong problem-solving and analytical skills.
- Ability to work under pressure in high-security environments.
- Excellent communication and documentation skills.
- Ability to collaborate with cross-functional teams.
- May require occasional travel for HSM installation or maintenance.
- On-call rotation for 24/7 HSM support.
- Secure lab environment for key ceremonies and cryptographic operations.
Non-benefitted (other than those mandated under state or federal law).Please note that this position does not include paid time off benefits. ApTask offers subsidized insurance coverage to our employees.
About ApTask:
ApTask is a leading global provider of workforce solutions and talent acquisition services, dedicated to shaping the future of work. As an African American-owned and Veteran-certified company, ApTask offers a comprehensive suite of services, including staffing and recruitment solutions, managed services, IT consulting, and project management. With a focus on excellence, collaboration, and innovation, ApTask provides unparalleled opportunities for professional growth and development. As a member of the ApTask team, you will have the chance to connect businesses with top-tier professionals, optimize workforce performance, and drive success across diverse industries. Join us at ApTask and be part of our mission to empower organizations to thrive while fostering a diverse and inclusive work environment.
Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.
Candidate Data Collection Disclaimer:
At ApTask, we prioritize safeguarding your privacy. As part of our recruitment process, certain Personally Identifiable Information (PII) may be requested by our clients for verification and application purposes. Rest assured, we strictly adhere to confidentiality standards and comply with all relevant data protection laws. Please note that we only collect the necessary information as specified by each client and do not request sensitive details during the initial stages of recruitment.
If you have any concerns or queries about your personal information, please feel free to contact our compliance team at businessexcellence@aptask.com
Applicant Consent:
By submitting your application, you agree to ApTask's (www.aptask.com) Terms of Use and Privacy Policy, and provide your consent to receive SMS and voice call communications regarding employment opportunities that match your resume and qualifications. You understand that your personal information will be used solely for recruitment purposes and that you can withdraw your consent at any time by contacting us at 732-355-8000 or help@aptask.com. Message frequency may vary. Msg & data rates may apply.