ENTRUST HSM Administrator

Entrust HSM Administrator

🎓 Education
• Bachelor’s degree in Computer Science, IT, Cybersecurity, or Engineering
• Relevant security certifications are a strong plus

🔐 Core Technical Skills (Must-Have)
• Hands-on experience with Entrust nShield HSMs
• nShield Connect
• nShield Solo
• nShield Edge
• Strong understanding of cryptography concepts:
• Symmetric & asymmetric encryption
• RSA, ECC, AES
• Hashing (SHA-256, SHA-512)
• Digital signatures
• Key management lifecycle:
• Key generation, storage, rotation, backup, recovery, destruction
• HSM security world management:
• Security World creation
• Administrator & operator cards
• Module initialization and recovery

PKI & Integration Skills
• Experience with PKI infrastructure
• Integration of HSMs with:
• Certificate Authorities (CA)
• Core banking systems
• Payment systems
• SSL/TLS
• Code signing platforms
• Familiarity with:
• KMIP
• PKCS#11
• CSP / JCE providers
• REST APIs (basic understanding)

Systems & OS Knowledge
• Linux (RHEL, CentOS, Ubuntu) – very important
• Windows Server (basic to intermediate)
• Network fundamentals (ports, firewalls, secure connectivity)
• Shell scripting (bash / basic automation)

Operations & Support
• HSM installation, upgrade, patching, and firmware updates
• Troubleshooting HSM issues and performance
• Incident response related to cryptographic systems
• Backup, DR, and HSM high availability (HA) setups
• Documentation & audit support

Certifications (Nice to Have)
• Entrust nShield training/certification
• CISSP / CISM / CEH
• ISO 27001 Lead Implementer/Auditor
• PCI Professional (PCIP)

Soft Skills
• Strong documentation skills
• Ability to work with:
• Security teams
• Infrastructure teams
• Application teams
• Experience handling audits and compliance reviews
• Attention to detail (critical for cryptographic operations)