CVS HealthRemote
Senior Secrets Management Engineer - Akeyless
United States of America
Full Time
1 week ago
$83,000 - $222,000 USD
H1B Sponsor Likely
Key skills
Secrets ManagementAkeylessHashiCorp VaultCyberArk ConjurSecurity EngineeringIdentityAccess Management (IAM)Privileged Access Management (PAM)Python ScriptingBash ScriptingPowerShell ScriptingCI/CD IntegrationJenkinsGitHub ActionsKubernetesCloud Platforms - AzureCloud Platforms - AWSCloud Platforms - GCPPythonBashPowerShellAWSAzureGCPVaultAKSGKEIAMGitHubService MeshCI/CD
About this role
CVS Health is dedicated to building a more connected and compassionate health experience. They are seeking a Senior Secrets Management Engineer to join their Identity and Access Management team, focusing on the design, deployment, and operational support of enterprise-grade secrets management platforms across multi-cloud environments.
Responsibilities:
- Serve as the SME for secrets management platforms such as Akeyless and HashiCorp Vault
- Lead the integration of secrets management solutions with CI/CD pipelines, Kubernetes (AKS, GKE), and cloud platforms (Azure, AWS, GCP)
- Automate the onboarding and rotation of secrets for applications and machine identities
- Collaborate with product managers, architects, and application teams to drive adoption and ensure secure implementation
- Develop and maintain scripts and automation tools for secrets lifecycle management
- Support the migration of non-person accounts from PAM tools to secrets management platforms
- Monitor and remediate risks related to unmanaged credentials and privileged access
- Contribute to the development of onboarding guides, SDK integrations, and operational runbooks
Requirements:
- 5+ years of experience in security engineering with a focus on IAM and PAM
- 3+ years of hands-on experience with Akeyless, HashiCorp Vault, or CyberArk Conjur in production environments
- 3+ years of experience with scripting in Python, Bash, or PowerShell
- 3+ years of experience in integrating secrets management with Jenkins, GitHub Actions, or similar CI/CD tools
- Bachelor's degree or equivalent experience (High School Diploma and 4 years relevant experience)
- Experience with Kubernetes, container orchestration, and service mesh integrations
- Deep understanding of cloud-native architectures and secure DevOps practices
- Familiarity with API-based secret access, SDKs, and CLI tools
- Experience working in large-scale enterprise environments
- Exposure to hybrid secrets management strategies involving multiple vaulting solutions (e.g., Azure Key Vault, AWS Secrets Manager)
- Knowledge of Just-in-Time access, certificate-based authentication (e.g., Venafi), and Zero Knowledge encryption models
- Familiarity with compliance frameworks and audit requirements for secrets management