I believe KMS is primarily for storing encryption keys (to replace an HSM). AWS Secrets Manager looks like it's much easier to integrate into credential best practices, like periodic rotation.

CyberArk (Conjur team) | Front End/Backend/DevOps/Security | REMOTE (or ONSITE Newton, MA) | FULL-TIME

The CyberArk Conjur team helps people write super reliable software that's hard to hack. We're building tools that make the best security practices convenient for developers, ops, and security teams.

We're looking for people that care about accessibility, security, and solving problems at both human and global-machine scales. We primarily use Ruby and JS but also pretty much anything new and interesting in the devops space.

conjur.org (our secret service, AGPLv3) https://www.conjur.com/careers/engineering/puzzle (our coding puzzle)

I'm seeing a javascript error in the console of your puzzle:

> Unhandled rejection TypeError: Cannot set property 'onclose' of null

is that puzzle correct? decoding that base64 returns gibberish

CyberArk (Conjur team) | Front End/Backend/DevOps/Security | REMOTE (or ONSITE Newton, MA) | FULL-TIME

The CyberArk Conjur team helps people write super reliable software that's hard to hack. We're building tools that make the best security practices convenient for developers, ops, and security teams.

We're looking for people that care about accessibility, security, and solving problems at both human and global-machine scales. We primarily use Ruby and JS but also pretty much anything new and interesting in the devops space.

conjur.org (our secret service, AGPLv3) https://www.conjur.com/careers/engineering/puzzle (our coding puzzle)

I'm getting server error in later step. Can you confirm if there's a problem or if this is expected?

I went through without issue. Look at all the clues.

You might want to check out Boston Logic (http://www.bostonlogic.com/one.php).