Irvine Technology Corporation is a leading provider of technology and staffing solutions for IT, Security, Engineering, and Interactive Design disciplines. They are seeking a HashiCorp Vault Engineer to support a major corporate divestiture, focusing on migrating Vault, designing secure policies, and building automation to operate the platform independently.
Responsibilities:
- Experience in using Vault to centralize and manage static and dynamic secrets (passwords, API keys, certificates)
- Installation, configuration, deployment, troubleshooting, and ongoing administration of Vault instances, including production setups
- Experience with defining and managing access control through Vault policies (ACLs) and role-based access controls (RBAC)
- Knowledge of configuring various authentication methods (e.g., Active Directory, LDAP, Kubernetes, AWS/Azure IAM)
- Hands-on work with different secret engines (e.g., Key-Value (KV), PKI, Databases, AWS)
- Configuring and monitoring Vault audit devices and metric collection for compliance and security purposes
- Experience with enterprise features like replication, performance standbys, and advanced monitoring, if applicable
- Building automated workflows and processes around Vault using scripting (Python, Bash, Go) and automation tools
- Deep knowledge of Terraform for deploying and managing Vault infrastructure and configuration (policies, roles, mounts)
- Integrating Vault into CI/CD pipelines using tools like Jenkins, GitHub Actions, or GitLab CI for secure secret injection
- Experience deploying and operating Vault on cloud providers such as AWS, Azure, or GCP
- Using Vault with Docker and Kubernetes (e.g., for managing Kubernetes secrets or using the Vault agent injector)
- Experience with Ansible or Chef for post-deployment configuration or application integration
- Understanding of networking, firewalls, load balancers, and public key infrastructure (PKI)
Requirements:
- Experience in using Vault to centralize and manage static and dynamic secrets (passwords, API keys, certificates)
- Installation, configuration, deployment, troubleshooting, and ongoing administration of Vault instances, including production setups
- Experience with defining and managing access control through Vault policies (ACLs) and role-based access controls (RBAC)
- Knowledge of configuring various authentication methods (e.g., Active Directory, LDAP, Kubernetes, AWS/Azure IAM)
- Hands-on work with different secret engines (e.g., Key-Value (KV), PKI, Databases, AWS)
- Configuring and monitoring Vault audit devices and metric collection for compliance and security purposes
- Experience with enterprise features like replication, performance standbys, and advanced monitoring, if applicable
- Building automated workflows and processes around Vault using scripting (Python, Bash, Go) and automation tools
- Deep knowledge of Terraform for deploying and managing Vault infrastructure and configuration (policies, roles, mounts)
- Integrating Vault into CI/CD pipelines using tools like Jenkins, GitHub Actions, or GitLab CI for secure secret injection
- Experience deploying and operating Vault on cloud providers such as AWS, Azure, or GCP
- Using Vault with Docker and Kubernetes (e.g., for managing Kubernetes secrets or using the Vault agent injector)
- Experience with Ansible or Chef for post-deployment configuration or application integration
- Understanding of networking, firewalls, load balancers, and public key infrastructure (PKI)