Key skills
PythonBashPowerShellAWSAzureGoogle CloudTerraformAnsibleVaultConsulNomadAzure ADLDAPService MeshCI/CDMentoringZero Trust
About this role
Role Title: L3 Subject Matter Expert Delinea & HashiCorp
Job Level: Senior / Specialist
Experience: 7 12+ years (minimum 3 5 years handson with Delinea + 3 5 years with HashiCorp)
Role Summary
We are seeking a highly skilled L3 SME with deep expertise in Delinea Privileged Access Management (PAM) solutions and the HashiCorp product suite (Terraform, Vault, Consul, Nomad). The candidate will serve as the highest technical escalation point, drive solution architecture, perform complex deployments, troubleshoot advanced issues, and guide customers on best practices for secure, scalable PAM and cloudinfrastructure automation.
Key Responsibilities
- L3 Technical Expertise
Provide endtoend ownership of complex incidents, root cause analysis (RCA), and escalations related to Delinea & HashiCorp platforms.
Troubleshoot and resolve advanced configuration, integration, performance, and security issues.
Develop and maintain L3 knowledge articles, runbooks, and automation scripts.
- Delinea (Thycotic) Responsibilities
Deep expertise in the following Delinea products:
Secret Server (SS) architecture, clustering, vault hardening, distributed engines.
Privilege Manager endpoint privilege elevation policies.
Connection Manager / Remote Access Service.
Delinea Cloud Suite integration and federation.
Key tasks:
Perform installation, upgrades, patching, and environment health assessments.
Configure secret rotation, discovery, workflow approvals, and password management.
Integrate Secret Server with AD, LDAP, Azure AD, SIEM, CyberArk, SailPoint, service accounts, cloud accounts.
Perform custom scripting (PowerShell, REST APIs) to extend and automate Secret Server workflows.
- HashiCorp Responsibilities
Handson experience with at least Vault + Terraform; Consul/Nomad is a strong plus.
HashiCorp Vault
Deploy and manage Vault clusters (OSS & Enterprise).
Configure PKI engine, KV engine, Transit, AWS/Google Cloud Platform/Azure auth methods, and secrets lifecycle.
Implement encryption-as-a-service, token management, DR, HA, replication.
Terraform
Write, optimize, and maintain Terraform IaC modules.
Integrate Terraform with major cloud providers (AWS/Azure/Google Cloud Platform).
Manage Terraform Cloud/Enterprise, workspaces, policies, Sentinel, state management.
HashiCorp Consultant / Nomad (preferred)
Service discovery, service mesh, KV operations.
Job scheduling and orchestration via Nomad.
- Architecture & Design
Design secure, scalable PAM and IaC architectures for hybrid and multicloud environments.
Lead design workshops, technical discovery, and architectural reviews.
Recommend best practices, governance models, and operational frameworks.
- Automation, Scripting & DevOps
Automate PAM and HashiCorp workflows using PowerShell, Python, Bash, Ansible, or REST APIs.
Build CI/CD pipeline integrations for Vault, Terraform, and Secret Server.
Perform API-based integrations with custom enterprise applications.
- Security, Compliance & Governance
Ensure solutions meet enterprise requirements:
Zero Trust
Identity & access governance
Secrets governance
Audit & compliance frameworks (ISO, SOC2, NIST, PCI-DSS)
Support audits by delivering logs, evidence, and architectural insights.
- Stakeholder & Customer Engagement
Act as the technical advisor for customers and internal teams.
Provide training, enablement, solution walkthroughs, and L2 team mentoring.
Collaborate closely with engineering, product, cybersecurity, and