Talent.com
Esta oferta de trabajo no está disponible en tu país.
CKMS & HSM IT Security Engineer

CKMS & HSM IT Security Engineer

BNP Paribas CIBMadrid, Comunidad de Madrid, España
Hace más de 30 días
Descripción del trabajo

Overview

CKMS & HSM IT Security Engineer at BNP Paribas CIB role. BNP Paribas Group is a major international bank with around 185,000 employees in 65 countries. In Spain we are more than 5,100 employees within 13 business lines. Spain IT Production organization provides IT Production services to Clients in EMEA, including Infrastructure, Telecom & Workspace, Production Security and Application Production domains, supported by a platform with over 400 experts delivering secure, stable, standardized and efficient production.

About the Job

MISSION : BNP Paribas must protect its assets from cyber-attacks and comply with regulators and client expectations. The major challenges require greater security of data and banking applications, especially with mobility, and Cloud services adoption. The mission is to integrate the Production Security teams responsible for securing access to information system assets.

The mission is part of the IT Group Production Security – Defense teams. This team focuses on security and data protection issues, providing security services within the overall requirements framework while ensuring operational readiness and Level 3 support across an international scope.

Scope : Key Management Services (KMS), Hardware Security Modules (HSM), Encryption, PKI, cryptographic services, smart cards, strong authentication solutions, electronic signatures, etc.

Mission & Role summary

Within the Crypto Services expertise team, the mission is to ensure the operational maintenance of the Group’s cryptographic security services (HSM, KMS, BYOK, KYOK, KMS, etc.) and to participate in the evolution of digital trust services (encryption, key management, electronic signature solutions, etc.). It is expected that you operate in a cloud context (Office 365, IBM and others) to meet new uses and security needs. A technical background, security and project management is therefore required.

You will contribute to the on-call duty rotation provided to ensure the high availability of services.

Responsibilities

  • Provide technical expertise around cryptography : HSM, KMS, data encryption, cryptographic key life cycle, BYOK, KYOK, algorithms
  • Participate in the design of architectures, building and evolution of KMS / HSM solutions
  • Work with the IT Risk Management teams and transcribe risk and security requirements from an operational perspective
  • Advise and support the business lines on the security aspects of various projects
  • Write technical, operational procedures (e.g. key ceremony, installation of MSM, change of defective MSM, etc.)
  • Investigate, qualify and implement new security solutions
  • Qualify version runs of existing solutions
  • Participate in cryptographic implementation projects and cryptographic key management
  • Participate in ongoing cryptographic services management activities
  • Contribute to the study of innovative solutions around cryptography
  • Integrate solutions for the protection of the Bank’s data in cloud solutions
  • Perform a security technology watch (authentication means, cryptographic algorithms, vulnerabilities, etc.)

Maintenance in operational and security condition

  • Carry out on-call duty (one week per month)
  • Provide Level 3 support for services
  • Analyze and process engineering requests and incident tickets
  • Carry out operations in off-peak hours
  • Maintenance and development of services
  • Industrialise and automate operating processes

    • Requirements

  • Education : Master’s degree or equivalent
  • Experience : Minimum 2 to 4 years with HSM, CKMS, PKI
  • Experience in IT Production environments
  • Experience as SPOC for technical escalations
  • Languages : High level English (written and spoken); French is appreciated

    • Skills

  • Cryptography — Expert
  • HSM — Expert
  • Security — Expert
  • Infrastructure — Mastery
  • Architecture — Mastery
  • Programming Languages (Shell, Python, etc.) — Mastery
  • Production — Expert
  • OS UNIX / Windows — Mastery
  • Databases (PostgreSQL, MongoDB) — Practical
  • Active Directory — Mastery
  • Administration — Mastery
  • IAM — Mastery
  • Network — Mastery

    • Transversal & Behavioral

  • Teamwork
  • Organizational skills and timeliness
  • Priority management and adaptability
  • Good writing quality
  • Sense of initiative
  • Autonomous, rigorous and methodical

    • Benefits

  • Training programs, career plans and internal mobility opportunities, national and international thanks to BNP Paribas presence in different countries
  • Diversity and Inclusion Committee that ensures an inclusive work environment; employee communities (PRIDE, We Generations, MixCity)
  • Corporate volunteering program (1 Million Hours 2 Help) allowing employees to volunteer in their time
  • Flexible compensation plan
  • Hybrid telecommuting model (50%)
  • 32 vacation days

    • BNP Paribas Group in Spain is an equal opportunity employer and proud to provide equal employment opportunity to all job seekers. We are actively committed to ensuring that no individual is discriminated against on the grounds of age, disability, gender reassignment, marriage or civil partnership status, pregnancy and maternity / paternity, race, religion or belief, sex or sexual orientation. Equity and diversity are at the core of our recruitment policy because we believe that they foster creativity and efficiency, which in turn increase performance and productivity. We strive to reflect the society we live in, while keeping with the image of our clients.

    Location

    Tres Cantos, Community of Madrid, Spain

    Seniority level

  • Mid-Senior level

    • Employment type

  • Full-time

    • Job function

  • Information Technology

    • #J-18808-Ljbffr

    Crear una alerta de empleo para esta búsqueda

    Security Engineer • Madrid, Comunidad de Madrid, España