HSM/Crypto Custody Engineer

HSM/Crypto Custody Engineer San Francisco/Austin/Dallas Fulltime $120K HSM/Crypto Custody Engineer with hands-on experience in building and operating HSM-backed signing infrastructure for self-custody platforms. Experience in crypto exchanges or institutional custody is required. Years of experience needed 5+ years

Technical Skills:

Primary Skills:

HSM Platforms:

Thales Luna, AWS CloudHSM, Utimaco, Ledger Enterprise Protocols:

PKCS#11,

JCE/JCA, REST/gRPC Key Management:

BIP32/44,

MPC, Shamir Secret Sharing Cryptography:

ECDSA (secp256k1), EdDSA, threshold signatures

Architecture:

HSM clustering, geo-redundancy, quorum controls

ATS Integration:

Low-latency signing, high throughput

Compliance:

FIPS 140-2

Level 3, SOC 2

Type II Custody:

Key ceremonies, cold/warm/hot wallets Agile methodology AI/Automation skills

Secondary Skills:

Cloud Platforms (AWS, Google Cloud Platform)

Key Responsibilities HSM Engineering:

Build and operate secure key management and signing systems

Transaction Signing:

Ensure low-latency, high-throughput processing

Key Management:

Secure key generation, storage, and lifecycle

Architecture:

Design resilient, geo-redundant HSM solutions

Custody Platform:

Implement wallet and custody architecture

Security & Compliance:

Adhere to FIPS and SOC standards

Risk Management:

Prevent key compromise and failure scenarios

Collaboration:

Work with ATS and architecture teams

Problem Solving:

Troubleshoot performance and cryptographic issues

Mentorship:

Guide team members