Summary: The AWS HSM SME role involves supporting the implementation and management of Public Key Infrastructure (PKI) using Microsoft Active Directory Certificate Services (ADCS). The position requires expertise in architecting, deploying, and integrating AWS CloudHSM to create a secure cryptographic environment. The candidate will also manage key lifecycle policies and ensure compliance with industry standards. This hybrid role is based in Luton and requires extensive experience in AWS and cryptographic key management.

Key Responsibilities:

• Architect and configure AWS Cloud HSM for ADCS PKI integration.
• Manage key lifecycle policies including generation, storage, rotation, and decommissioning.
• Implement secure certificate issuance, revocation, and validation processes.
• Ensure high availability and failover strategies for HSM deployments.
• Align HSM and PKI implementations with industry standards like FIPS 140-2, NIST, ISO 27001, and GDPR.
• Automate PKI workflows and certificate management.
• Provide technical guidance on encryption protocols and PKI best practices.
• Perform risk assessments and ensure compliance with security standards.
• Collaborate with security teams to enforce cloud security and IAM policies.
• Troubleshoot and optimize HSM performance, security, and scalability.

Key Skills:

• 8+ years of experience with AWS Cloud HSM, AWS KMS, and cryptographic key management.
• Expertise in HSM architecture, security policies, and key lifecycle management.
• Hands-on experience with AWS security services (IAM, EC2, VPC, KMS).
• Strong knowledge of Microsoft ADCS PKI, X.509 certificates, and certificate management.
• Experience with TLS/SSL encryption and certificate-based security models.
• Familiarity with regulatory standards (ISO 27001, NIST, GDPR) and cloud security best practices.

Salary (Rate): £550

City: Luton

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: Senior

Industry: IT