Image hero
Job offer

Architecte - Administrateur Système pour l'ICN H/F - CDI - Monaco

Posted on 29 Aug 2025
Job in Permanent
Remote Hybrid

If you would like to take part in this project, which is helping to shape the Principality's digital transition and, more specifically, the digital identity of Monegasque citizens and residents, with the aim of achieving European recognition of the probative value of the qualified certificates produced, then come and take up this challenge with INFORCA.

Missions

The National Trust Infrastructure (ICN) is the technical and organisational foundation enabling government departments (the Town Hall, the Public Security Department [DSP], the Human Resources and Civil Service Training Department [DRHFFP], the Economic Development Department [DDE] and the Digital Services Department [DSN]) to issue qualified electronic certificates within the meaning of Monegasque regulations.

The ICN was deployed in the Principality of Monaco in 2020. It has been operational since spring 2021, currently supports the functions of 7 Certification Authorities (CAs) and issues authentication, signature and seal certificates.

Responsibility for all CAs is centralised at the Monegasque Digital Security Agency (AMSN). Delegated Registration Authorities (DRAs) are deployed within government departments, which manage the entire life cycle of certificates. For these tasks, they are provided with specific desks developed for their needs.

The PKI is operated remotely by a Technical Operator for the certificate generation part. Analysis of the CCM's traces is based on an infrastructure managed, hosted and operated by AMSN, and feeds into an SOC for 24/7 supervision of its services.

You will be joining AMSN's Expertise Unit, which currently has a staff of five, four of whom are dedicated to managing the ICN: a security officer, responsible for the RACINE CA, a functional manager, responsible for qualified CAs and maintaining the qualification of services, and a technical manager, already assisted by a technical consultant, who will report to the technical manager.

Study the different architectures in place

  • Analyse the DATs for the ICN, M-ROAD counters and ancillary infrastructures,
  • Analyse the architectures actually in place to identify shortcomings in the TADs,
  • Produce an astonishment report highlighting possible improvements

Propose a streamlined target architecture. In detail, the mission includes the following actions

  • Identifying the technical interfaces between the ICN, the M-ROAD counters and the ancillary infrastructures
  • Proposing alternative solutions to break down these links, if necessary,
  • Propose a rationalisation of data centre installations and technical resources, while complying with the good architecture practices defined by ANSSI,
  • Participate in drafting the implementation specifications,
  • Support the implementation of this plan.

Updating the elements of the document repository

  • Participating in changes to the technical documentation repository with the technical operators,
  • Participating in the drafting of general policies to be implemented by all project stakeholders,
  • Participate in drafting the operational procedures arising from the applicable policies,
  • Participating in the annual review of the entire document repository,
  • Participating in the follow-up of corrective actions and updates following the review.

Participating in the operational monitoring of the CCM

  • Participate in defining and monitoring quality and performance indicators,
  • Contributing to the planning of technical upgrades and maintenance in operational and safety conditions,
  • Participating in the administration of the various CCM assets.

Profile

Higher education in computing and information systems. At least 5 years' operational experience on similar strategic assignments.

Know how

  • Master the main concepts and challenges of digital security,
  • Experience in functional and technical architecture design,
  • Knowledge of concepts in the following areas
    • Networks, Storage, Virtualisation, Backups, Supervision
    • Databases (especially PostgreSQL)
    • Operating systems (mainly Linux, Windows on the fringes)
    • Architecture security (bastion, firewall, proxy, VPN, application firewalls, etc.)
  • Mastering the concepts and rules of cryptography, particularly asymmetric cryptography and key management infrastructures
  • be familiar with the life cycle of an X.509 certificate and the principle of a hardware security module (HSM)
  • Mastery of office automation tools
  • Good writing and speaking skills in French, fluency in French and English (reading, writing, speaking)
  • Ability to report back, good analytical and summarising skills, - Ability to show initiative and autonomy,
  • Ability to explain and communicate with all internal and external stakeholders
  • Ability to advise, propose solutions and help make informed decisions.
  • Knowledge of KeyFactor's EJBCA enterprise product, standards (ETSI, mainly 319 401, 319 411-1, 319 411-2, 319 412, 319 421 and 319 422), technical repositories (RFCs) and PKCS standards applicable to the PKI domain, including electronic certificates, would be a plus.
  • Be able to make proposals,
  • Demonstrate rigour, method, organisation, discretion and a proven sense of ethics.

More informations

Position based in Monaco - Permanent contract - Only European nationals or holders of a residence permit issued by the Préfecture des Alpes-Maritimes (06) are eligible for employment in the Principality.

We are committed to diversity, gender equality and the employment of disabled workers.

Similar job offer

Discover our others job offers
See all our job offers
Architecte - Administrateur Système pour l'ICN H/F - CDI - Monaco
Inforca
Monaco
Permanent
Remote : Hybrid