Technical Consultant III (Chantilly, VA Onsite)

IDEMIA is the global leader in identity and security. Our mission is to create a safe and simple future where identity verification is indisputable, and only you can assert your identity. We are a distributed company leveraging the latest technologies to deliver world-class products in the private and public sectors of finance, telecom, identity, security, retail, sports entertainment, commercial, government, and IoT. We use a variety of technologies and approaches to deliver quality product and services to government agencies and technology companies. IDEMIA is a made up of a group of 14,000 diverse people from different nationalities, speaking over 20 different languages. Together, our solutions impact the everyday lives of citizens and nations. In this ever-changing world, protecting your identity is paramount. Join the team that is ensuring one person - one identity.

Purpose of position

• Implement and document new and upgraded smartcard configurations to satisfy customer requirements, technical standards, and IDEMIA features
• Investigate and fix problems raised by Exton manufacturing and Chantilly personalization
• Support IDEMIA smartcard customers
• Write tools to explore, verify, and generate smart card data models

Tools used

• IDEMIA’s Common Personalization System (CPS), a GUI based configuration tool for smart card data, commands, access conditions, key management, file processing, and graphical programming
• PCOM, an APDU oriented script tools with cryptographic and HSM (Hardware Security Module) interfacing features
• C++ or other high level language for writing tools that interact with smartcards
• Cryptographic libraries like CryptoAPI Next Generation, OpenSSL
• English documentation and communication with US customers

Standards used

• ISO-7816
• PC/SC
• PIV (FIPS 201), NIST SP800-73-4, all features in depth
• Biometrics like ANSI 385, 378
• FIDO
• DESFIRE
• 125 KHZ proximity formats and other Physical Access Control System (PACS) technologies
• Java card applets
• Global platform smart card management, secure channels, diversified keys
• PKCS #11, #12

Technology used

• Cryptography (PKI, X509 AES, RSA, ECC, SHA-256, EC Diffie-Helman Key Exchange, PKI)
• Windows cryptography stack including CSP and Mini-driver
• Low level bit encoded commands and data with hexadecimal, non-symbolic values

Helpful experience

• Previous experience with a smart card manufacturer
• Previous experience with Federal Agency dealing with PIV, access control, or PKI

Ideal experience

• Familiar with IDEMIA’s PIV applet initialization commands and responses, key management, and tools

• Minimum 5 years of experience in smart card
• Knowledge of cryptography (PKI)
• Hardware security modules
• C++ programming
• ISO 7616 and ISO 14443 international standards
• FIPS 201 and FIPS 140
• US citizenship