Key skills
AWSAzureCloudDockerJenkinsKubernetesPythonTerraformVaultGitHub ActionsArgoCDIAMOktaGitHubSaaSCI/CDCollaborationCloud Security
About this role
Role Overview
- In conjunction with our team and others, actively design and develop identity automation for a global enterprise composed of a diverse landscape of IDPs.
- Implementing and understanding cloud solutions (AWS) with Infrastructure as Code tool (Terraform or Crossplane) for Security Tools (Sailpoint Identity Cloud or other IGA tools, CyberArk, Delinea, Clutch, HashicorpVault, Secrets Management, etc.)
- Help to Lead engineers to on-boarding security tools such as IGA, ITDR, PAM, Secrets Maanagement, etc., into the Security DevSecOps life cycle for multiple tech stacks.
- Working from a set of requirements, produce draft solution designs and initiate collaboration with stakeholders to refine the design to meet stakeholder expectations.
- Assist with implementation of identity governance and administration (IGA) solutions for the company.
- Create automated tooling to test identity systems to ensure detections work as designed.
- Create automation to produce automated policy and posture collection and reporting, to allow for identity-specific proofs managed within Infrastructure as Code.
- Create pipelines to deploy and manage IAM solutions and tooling.
- Provide engineering and technical guidance for supporting the automation of interacting with security tools and services that support the IAM program within the company.
- Keep current on emerging security technologies and tools and provide recommendations.
- Support our compliance and certification initiatives and design with those in mind.
- Collaborate with other engineers on design, analysis, architecture, implementation, security reviews and process enhancements.
Requirements
- Application and DevSecOps processes with CI/CD pipelines from early stages of the lifecycle.
- Implementing and understanding cloud solutions (AWS) with Infrastructure as Code tool (Terraform or Crossplane) for Security Tools (DAST, SAST, SCA, IaC, IAST, Supply Chain Security, Secrets Management, etc.)
- Help to build CI/CD pipelines with Jenkins MPL and GitHub Actions, ArgoCD for Security Artifacts.
- Knowledge of IAM Security Tools (IGA, ITDR, PAM, Secrets Management, etc.) is a plus.
- Speed Architecture with Docker and Kubernetes, along with cloud hosting providers, like AWS.
- Act as Developer teams to cloud (AWS) integrating software service tools (Jenkins, jFrog Artifactory, GitHub Actions) into automation for on-premises, SaaS and Cloud Security Tools.
- Help to Lead engineers to on-boarding security tools such as DAST, SAST, SCA, IaC, IAST, Supply Chain Security, Secrets Maanagement, etc., vulnerability and open-source scanning into the Security DevSecOps life cycle for multiple tech stacks.
- Proficiency in at least one high-level language (e.g., Python).
- Hands on experience with privileged access management tools (CyberArk, SailPoint, Okta, Delinea, Clutch).
- Experience with secrets management (e.g. HCP Vault) CyberArk PAM experience.
- AWS Identity (IAM, IDC)
- intermediate level skills.
- Hands on in a security role, preferably in financial services or technology.
- Hands-on experience with AWS, Azure, or other cloud platforms and IAM best practices.
- Understanding of compliance frameworks (PCI-DSS, ISO 27001, NIST).
Tech Stack
- AWS
- Azure
- Cloud
- Docker
- Jenkins
- Kubernetes
- Python
- Terraform
- Vault
Benefits
- An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
- The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
- Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so.
- An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie.