Hardware Security Developer Team Lead R&D (M/F)

Atos
Canton de Tours-4, France
30 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Canton de Tours-4, France

Tech stack

Bash
BIOS
Computer Security
Continuous Integration
Firmware
Hardware Security Module
OpenSSL
Public Key Infrastructure
Regression Testing
Security Software
Shell Script
Scripting (Bash/Python/Go/Ruby)
Extensible Firmware Interface
High Performance Computing
Software Security
U-Boot

Job description

The protection of the vendor keys is of utmost importance to the security of the supply chain and the trust our customers can have in the security of our products. To achieve high level of security, the use of hardware security modules (HSM) in the development infrastructure is mandatory. They are also used to provision unique device secrets during manufacturing of Bull products, more specifically all the BullSequana servers, from Edge to Enterprise and High-Performance Computing (HPC), as well as Quantum Learning Machine (QLM).

The Hardware Security Developer Team Lead will interact with:

  • The different Product managers who are the stakeholders responsible for the delivery of the products to Bull' customers.

  • The manufacturing teams to organise smooth updates of the firmware security features, ensuring the manufacturing processes are maintained.

  • Product R&D teams to ensure smooth integration with the security features that they are developing.

  • The Hardware Security Architect who is responsible for the overall specification of Product Security Implementation in Bull's delivered products.

Role description:

The Hardware Security Developer Team Lead:

  • Manages and Coordinates the development roadmap of the Platform Firmware Resilience HSM framework in liaison with R&D teams, and manufacturing

  • Implements the security features in our products according to the development roadmap.

  • Contributes to the development and Maintenance of the proxy framework around the HSMs, which is interacting with the different development frameworks.

  • Decides validation and non-regression tests to maintain security features across firmware updates.

  • Is accountable for non-regression when putting new versions of the proxy framework in production.

Requirements

Do you have experience in Shell Scripting?, * CI/CD methodologies

  • Knowledge of scripting languages, especially bash.

  • Knowledge of cryptographic key manipulation with tools like openssl

  • Knowledge of Public Key Infrastructure (PKI)

  • Knowledge on hardware security features like HSM, TPM, TEE, Roots and Chains of trust, device attestation, UEFI Secure Boot, etc.

  • Fluent written and spoken English.

Nice to have:

  • Knowledge of pkcs11-tool and PKCS11 interface.

  • Knowledge of BIOS and BMC

  • Knowledge of the cybersecurity tools and best practices

  • Experience in Cybersecurity area: access control, encryption / discovering & managing vulnerabilities / collecting & analyzing events.

Here, your ideas, your curiosity and your technical excellence directly shape the next era of advanced computing - unlocking enterprise value, accelerating scientific progress and driving positive impact for society.

About the company

Bull is a story. One with a century of European innovation and a working environment where experts design powerful, sustainable, and sovereign digital solutions, enabling states and industries to retain full control over their data and their AI. Bull is also thousands of engineers, researchers and passionate tech people shaping the future of high-performance computing, AI, and quantum technologies. Every day, our teams push the boundaries of what is technologically possible - from next-generation HPC architectures to exascale supercomputers - supported by world-class R&D, more than 1,600 patents, and unique end-to-end capabilities spanning hardware design, software engineering, data science and quantum research. We are a people-centric, innovation-driven company, where collaboration spans Europe, the Americas and India. We share a common vision of a responsible and sustainable innovation that delivers concrete impact for our customers. Product Security makes an increasing use of cryptographic keys to secure firmware and management software. Each new chip comes with its own hardware security mechanisms to support secure boot and secure firmware upgrade. As an integrator of these chips, a vendor must maintain a consistent approach to these security features, from design and development to manufacturing.

Apply for this position