Job Listings

Are you passionate about cyber security and people? We are looking for an experienced Senior Manager who knows cybersecurity and how to mentor and develop a security operations team. In this role, you will lead a security team focused on developing and executing security operations work to ensure the security of cloud systems and data. You will continuously improve security monitoring, incident response, vulnerability assessment, cloud security posture and risk assessment leveraging people, processes, and technologies. You will also be responsible for attracting and retaining talent, developing long-term workforce plans, and driving continuous improvements.   - Provide leadership to security team personnel. Serve as a mentor, coach, and facilitator to develop an industry-leading cybersecurity team. - Manage, assess, and mentor the SecOps staff in monitoring, response, and continuous improvement; provide program oversight for security monitoring; and work with Cloud Infrastructure, SRE, Development and other teams for response, mitigation, and closure. - Ensure the work of the security operations team is allocated and duties are being fulfilled. - Improve the skills and processes of the SecOps team. - Identify and prioritize current and emerging workload. - Continuously improve security monitoring, incident response, vulnerability assessment, cloud security posture, and risk assessment leveraging people, processes, and technologies. - Coordinate response activities across teams or directly with stakeholders to identify and remediate potential threats. - Communicate status, results, and summaries of security incidents to key stakeholders. - Manage and oversee all responsibilities for SecOps metrics and reporting. - Oversee necessary actions for security incidents and legal requests. - Continually review new technologies and establish highly effective processes and protocols to ensure comprehensive protection exists to protect our systems. - Actively pursue automation and orchestration to maximize team talent and reduce routine tasks. - Assume responsibility for other duties as required or assigned.

If you love cyber security, problem solving, getting things done and collaborating with people, then we would love to talk to you!   IDEMIA is looking for a Cloud Security Engineer with FedRAMP or NIST 800-53 experience to help us achieve FedRAMP compliance. This position requires a combination of great interpersonal skills and hands-on FedRAMP and NIST 800-53 moderate expertise.   Primary Responsibilities - Spearhead security efforts FedRAMP accreditations. - Manage ongoing relationships with key third-party entities such as the FedRAMP PMO, 3PAO, and the AO. - Foster collaboration across security and engineering teams to architect, implement, and monitor security and compliance features. - Support assessment, continuous monitoring, and reporting activities. - Engage directly with customers, prospects, and stakeholders. - Serve as a technical expert throughout the implementation and maintenance of assigned information security solutions. - Develop and create technical procedures to standardize operational functions for assigned security technologies. - Conduct security assessments as required to identify gaps in controls, processes, and systems and propose security enhancement to mitigate risks. - Assist in cloud security activities such as configuration assessments, posture management, and other intrusive and simulation led tasks. - Collaborate with other members of the security team, Cloud Platform Engineering, Site Reliability Engineering, Development, and other teams. - Build and upgrade security posture for compliance with NIST 800-53 and FedRAMP. - Demonstrate organization and planning skills, including time management, project coordination, and project management. - Other duties as assigned.

- Collaborate with stakeholders to gather requirements for system enhancements and customizations. - Ensure data integrity within the ERP system. - Analyze existing business processes and workflows to identify areas for improvement. - Recommend and implement process enhancements to maximize efficiency and productivity. - Work closely with end-users to understand their needs and translate them into ERP system solutions. - Provide technical support to end-users, troubleshooting issues, and resolving system-related problems. - Develop and deliver training programs and materials to educate employees on ERP system usage and best practices. - Create and maintain reports and dashboards to support data-driven decision-making. - Perform data analysis to identify trends, anomalies, and opportunities for improvement. - Collaborate with IT and other departments to integrate the ERP system with other business applications. - Work with external vendors and consultants as needed for system integrations or specialized projects. - Maintain comprehensive documentation of ERP system configurations, customizations, and processes. - Ensure compliance with industry standards, regulations, and best practices in ERP system management.

Purpose of position - Implement and document new and upgraded smartcard configurations to satisfy customer requirements, technical standards, and IDEMIA features - Investigate and fix problems raised by Exton manufacturing and Chantilly personalization - Support IDEMIA smartcard customers - Write tools to explore, verify, and generate smart card data models Tools used - IDEMIA’s Common Personalization System (CPS), a GUI based configuration tool for smart card data, commands, access conditions, key management, file processing, and graphical programming - PCOM, an APDU oriented script tools with cryptographic and HSM (Hardware Security Module) interfacing features - C++ or other high level language for writing tools that interact with smartcards - Cryptographic libraries like CryptoAPI Next Generation, OpenSSL - English documentation and communication with US customers Standards used - ISO-7816 - PC/SC - PIV (FIPS 201), NIST SP800-73-4, all features in depth - Biometrics like ANSI 385, 378 - FIDO - DESFIRE - 125 KHZ proximity formats and other Physical Access Control System (PACS) technologies - Java card applets - Global platform smart card management, secure channels, diversified keys - PKCS #11, #12 Technology used - Cryptography (PKI, X509 AES, RSA, ECC, SHA-256, EC Diffie-Helman Key Exchange, PKI) - Windows cryptography stack including CSP and Mini-driver - Low level bit encoded commands and data with hexadecimal, non-symbolic values Helpful experience - Previous experience with a smart card manufacturer - Previous experience with Federal Agency dealing with PIV, access control, or PKI Ideal experience - Familiar with IDEMIA’s PIV applet initialization commands and responses, key management, and tools

Purpose of position - Implement and document new and upgraded smartcard configurations to satisfy customer requirements, technical standards, and IDEMIA features - Investigate and fix problems raised by Exton manufacturing and Chantilly personalization - Support IDEMIA smartcard customers - Write tools to explore, verify, and generate smart card data models Tools used - IDEMIA’s Common Personalization System (CPS), a GUI based configuration tool for smart card data, commands, access conditions, key management, file processing, and graphical programming - PCOM, an APDU oriented script tools with cryptographic and HSM (Hardware Security Module) interfacing features - C++ or other high level language for writing tools that interact with smartcards - Cryptographic libraries like CryptoAPI Next Generation, OpenSSL - English documentation and communication with US customers Standards used - ISO-7816 - PC/SC - PIV (FIPS 201), NIST SP800-73-4, all features in depth - Biometrics like ANSI 385, 378 - FIDO - DESFIRE - 125 KHZ proximity formats and other Physical Access Control System (PACS) technologies - Java card applets - Global platform smart card management, secure channels, diversified keys - PKCS #11, #12 Technology used - Cryptography (PKI, X509 AES, RSA, ECC, SHA-256, EC Diffie-Helman Key Exchange, PKI) - Windows cryptography stack including CSP and Mini-driver - Low level bit encoded commands and data with hexadecimal, non-symbolic values Helpful experience - Previous experience with a smart card manufacturer - Previous experience with Federal Agency dealing with PIV, access control, or PKI Ideal experience - Familiar with IDEMIA’s PIV applet initialization commands and responses, key management, and tools

- Monitor, categorize, triage, and assign all incoming IT tickets. - Purchase and procure IT equipment for site. - Maintain and organize IT inventory. - Record, troubleshoot, escalate, and follow-up with end-users regarding IT support matters. - Support computer users with both hardware and software needs.  - Install and deploy workstations, tablets, cell phones, and other IT technology to users.  - Provide end-user training with IT systems and applications.  - Adhere to all IT processes, policies, standards, and procedures.  - Maintain complete and service tickets and documentation of work completed.  - After-hours end user, network, and IT infrastructure support when required.  - Perform other IT related duties as directed and assigned by IT Supervisor/Manager/Director. 

- Monitor, categorize, triage, and assign all incoming IT tickets. - Purchase and procure IT equipment for site. - Maintain and organize IT inventory. - Record, troubleshoot, escalate, and follow-up with end-users regarding IT support matters.  - Support computer users with both hardware and software needs.  - Install and deploy workstations, tablets, cell phones, and other IT technology to users.  - Provide end-user training with IT systems and applications.  - Adhere to all IT processes, policies, standards, and procedures.  - Maintain complete and service tickets and documentation of work completed.  - After-hours end user, network, and IT infrastructure support when required.  - Perform other IT related duties as directed and assigned by IT Supervisor/Manager/Director. 

Duties and responsibilities                - Assist support staff as/when required in order to meet deadlines and IDEMIA Infrastructure support priorities. - Provide input as required on product and system specific functionality, configuration and usage for training and documentation purposes. - Share skills and experience with other groups within the organization, with the aim of establishing consistency and improving quality within the company. - Proactive and promptly identify and assist to resolve any relevant key issues and/or risks. - Understand, follow and improve upon all formally communicated methodologies, processes, policies, and values. Focusing always on delivering consistent, reliable, repeatable, scalable and quality outcomes. - Provide support and encouragement to other team members and participate in the up-skilling and training of colleagues and new staff. - Analyze failure and ensure operational recovery within agreed SLA through standard procedures - Work on continuous improvement process by analyzing recurrent incidents and designing long term solutions - Propose improvements of the monitoring setup - Address any none compliances in timely and orderly manner - Work independently / a quick learner with ability to implement workarounds through the proper guidance of Support standards and conventions. - Able to work flexible hours if needed - Available to come to Data Centers or approved area locations for technical support in case of emergencies - Able to travel as and when reasonably requested. - All other duties as requested by Management