We are seeking an experienced and highly skilled Thales HSM Specialist to join our security and infrastructure team. In this role, you will be responsible for the deployment, configuration, maintenance, and support of Thales Hardware Security Modules (HSMs), ensuring the secure generation, storage, and management of cryptographic keys across our enterprise systems.
Key Responsibilities
* Strong Thales HSM skills that understand cryptography and Payment operations on HSM along with Microsoft Azure skills.
* Understanding of Azure - firewalls, key vault and related services
* Deep experience working with Thales HSM and working with PCI PIN compliance with auditors
* Good understanding Cards transaction switch (this will be a great bonus)
* Install, configure, and maintain Thales HSMs (Luna HSM, payShield, or other relevant models)
* Integrate HSMs with applications and systems including PKI, code signing, SSL/TLS offloading, and database encryption
* Manage key lifecycle operations: key generation, key wrapping/unwrapping, key backup, and secure key rotation
* Implement HSM access controls and user authentication mechanisms (e.g., multifactor, roles, partitions)
* Monitor and troubleshoot HSM operations, ensuring high availability and performance
* Support audits, compliance initiatives, and documentation efforts related to cryptographic operations
* Work closely with application teams, DevOps, and InfoSec to ensure secure integration and usage of cryptographic services
* Stay up to date on cryptographic best practices, compliance standards (e.g., PCI-DSS, GDPR, ISO 27001), and product updates
Required Qualifications
* 3+ years of hands-on experience with Thales HSMs (preferably Luna or payShield series)
* Strong understanding of cryptographic principles and protocols (PKI, TLS, RSA, ECC, AES, etc.)
* Experience integrating HSMs with enterprise systems (e.g., F5, Microsoft CA, Java Keystore, cloud key management)
* Familiarity with tools such as LunaCM, KeySafe, nShield, or other crypto command-line interfaces
* Experience with scripting (e.g., Python, Bash) for automation and monitoring
* Ability to work in a regulated environment with strict security and compliance requirements
* Excellent problem-solving and communication skills
Helix is a specialist in the consulting and talent provision space, we are passionate about what we do and how our work positively impacts Australians.
If you are mission-focussed and would like to make a difference during your next assignment, get in touch with us to hear about what we have coming up