Senior Technology Engineer- HashiCorp

We are hiring for our client, a leading bank in the UAE, for the position of Senior Technology Engineer (Security Tools). This role is integral to the bank’s digital transformation journey, focusing on the continuous product engineering lifecycle of security technologies.

Job Purpose

Participates in the following areas in the deployment and integration of relevant tool sets:

• Primary (must have):

1. HashiCorp Vault – Secrets Management

•   Secondary (good to have):

1. CyberArk – Privileged Access Management
2. Identity Services (Sailpoint)
3. Single Sign On (Ping Identity)
4. Encryption/Tokenization Services (Cipher Trust Manager/CT-VL)
5. Database Access Monitoring (Imperva)
6. AppViewX – Certificate Management

Detailed requirement for Primary toolset – HashiCorp Vault:

• Design, implement and sustain a centralized secrets management system using HashiCorp Vault
• Installation and Operationalization of HashiCorp Vault and Consul/Raft storage components both On-Prem and Cloud
• Hands on experience in HashiCorp Vault integration with target application for secrets management using varied auth methods – LDAP, AppRole, Kubernetes
• Experienced as a security professional in installing, managing & monitoring of HashiCorp Vault
• Hands on experience in configuration and migration of storage from Consult to Raft (Integrated storage)
• Integration of Vault with Jenkins and Kubernetes for seamless credential injection.
• Experience in deployment of HashiCorp Vault Enterprise on Linux servers, utilizing OpenShift/VMWare for high availability
• Experienced in troubleshooting production issues on HashiCorp Vault related to App Role, Secrets, Namespace, KV engine, Transit engine, varied authentication methods.
• Good coordination with project Architects, Developers, Change Management and Infrastructure support team
• Knowledge of security controls such as encryption, vulnerability assessment, SIEM
• Demonstrated experience at hardening of HashiCorp Vault as per industry standards
• Basic knowledge of network infrastructure – Load Balancer, Data center affinity etc.
• Knowledge of Vault Disaster Recovery and High Availability strategies

Requirements

A.      Education

• Bachelors or Master’s Degree in Computer Science or equivalent discipline
• Certifications such as CISSP, CISA,CISM

B.      Experiences

• At least 8 years of experience at a relevant position in large organization

C.      Knowledge & Skills

• Excellent technical knowledge in Security Concepts and Toolset (Sailpoint, Hashicorp Vault, CyberArk, Ping, Imperva, Cipher Trust Manager)
• Excellent Development and Scripting Skills (Python, Power Shell, Bash, JAVA, .NET)
• Strong people and leadership management skills with proven ability to lead, motivate, inspire, develop, and encourage people.
• Superior organization and process oriented capabilities (Self Related)
• Innovative and Out of the Box based approach to automation and enhancement (Thinking)
• Is transparent, accepts responsibility and takes accountability; accepts mistakes and learns from them (Self Related)
• Team Player who believes in working together; listen to other’s ideas; communicate accurately and concisely (People Related)
• Security Mindset (Thinking Related)