Security Engineer - CyberArk/Hashivault/PAM

Request Technology - Robyn Honquest

Posted on Jan 25, 2024 by Request Technology - Robyn Honquest
Chicago, IL, 60601
IT
Immediate Start
$140k - $160k Annual
Full-Time

NO SPONSORSHIP

Security Engineering - PAM - CYberArk and Hashivault

SALARY: $140k - $150k - $160k plus 15% bonus

LOCATION: CHICAGO

3 days onsite and 2 days remote

Looking for a candidate that has heavy engineering working with CyberArk, hashivault secrets management. privileged management.

Primary Duties and Responsibilities:

    • Design, implement, and maintain our Certificate Authority PKI infrastructure.
    • Ensure certificates are correctly issued, renewed, and revoked as necessary.
    • Implement and manage certificate templates and revocation configurations.
    • Implement, configure, and maintain HSMs to support PKI operations.
    • Work with vendors to ensure systems are patched and up to date.
    • Address and troubleshoot issues related to PKI, HSM, and PAM solutions.
    • Implement and manage encryption tools and software.
    • Design, deploy, and manage PAM solutions.
    • Ensure team solutions are monitored following best practice.
    • Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation.
    • Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation.
    • Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program.
    • Develop and maintain encryption standards, practices, and solutions.
    • Develop and maintain documentation related to PAM policies, procedures, and configurations.

Qualifications:

    • Experience with Microsoft certificate authority PKI infrastructure.
    • Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies.
    • Experience with hardware security modules (HSMs).
    • Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications.
    • Experience with Python, Ansible, Terraform, and YAML packages.
    • Requires in-depth knowledge of PAM and Secrets Management best practices.
    • Working knowledge of system monitoring techniques and tooling.
    • Working knowledge CI/CD deployments with Terraform, Ansible, and Jenkins pipelines.
    • 3+ years of experience in PKI
    • 3+ years of experience with PAM tools and technologies.
    • Bachelor's degree in computer science, Information Technology, or related field.

Technical Skills:

    • Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT).
    • Hands on experience leveraging APIs.
    • Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools.
    • Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies.
    • Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities.

Education and/or Experience:

    • 5+ years of experience with security engineering activities and testing.
    • 3+ years of experience with privileged access management platforms.
    • 3+ years of experience with HSM, PKI, Microsoft Certificate Authority.
    • 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs)
    • 2+ years of experience with cloud architecture and deployments.

Certificates or Licenses are pluses:

    • Certification Information Systems Security Professional (CISSP)
    • AWS Certified Security Specialty
    • CompTIA Security+
    • Microsoft Certified: Security Engineer Associate
    • HashiCorp Certified: Terraform Associate
    • HashiCorp Certified: Vault Associate
    • CyberArk Defender, Sentry, or Guardian

Reference: 2707248884

https://jobs.careeraddict.com/post/87300933

This Job Vacancy has Expired!

Request Technology - Robyn Honquest

Security Engineer - CyberArk/Hashivault/PAM

Request Technology - Robyn Honquest

Posted on Jan 25, 2024 by Request Technology - Robyn Honquest

Chicago, IL, 60601
IT
Immediate Start
$140k - $160k Annual
Full-Time

NO SPONSORSHIP

Security Engineering - PAM - CYberArk and Hashivault

SALARY: $140k - $150k - $160k plus 15% bonus

LOCATION: CHICAGO

3 days onsite and 2 days remote

Looking for a candidate that has heavy engineering working with CyberArk, hashivault secrets management. privileged management.

Primary Duties and Responsibilities:

    • Design, implement, and maintain our Certificate Authority PKI infrastructure.
    • Ensure certificates are correctly issued, renewed, and revoked as necessary.
    • Implement and manage certificate templates and revocation configurations.
    • Implement, configure, and maintain HSMs to support PKI operations.
    • Work with vendors to ensure systems are patched and up to date.
    • Address and troubleshoot issues related to PKI, HSM, and PAM solutions.
    • Implement and manage encryption tools and software.
    • Design, deploy, and manage PAM solutions.
    • Ensure team solutions are monitored following best practice.
    • Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation.
    • Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation.
    • Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program.
    • Develop and maintain encryption standards, practices, and solutions.
    • Develop and maintain documentation related to PAM policies, procedures, and configurations.

Qualifications:

    • Experience with Microsoft certificate authority PKI infrastructure.
    • Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies.
    • Experience with hardware security modules (HSMs).
    • Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications.
    • Experience with Python, Ansible, Terraform, and YAML packages.
    • Requires in-depth knowledge of PAM and Secrets Management best practices.
    • Working knowledge of system monitoring techniques and tooling.
    • Working knowledge CI/CD deployments with Terraform, Ansible, and Jenkins pipelines.
    • 3+ years of experience in PKI
    • 3+ years of experience with PAM tools and technologies.
    • Bachelor's degree in computer science, Information Technology, or related field.

Technical Skills:

    • Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT).
    • Hands on experience leveraging APIs.
    • Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools.
    • Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies.
    • Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities.

Education and/or Experience:

    • 5+ years of experience with security engineering activities and testing.
    • 3+ years of experience with privileged access management platforms.
    • 3+ years of experience with HSM, PKI, Microsoft Certificate Authority.
    • 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs)
    • 2+ years of experience with cloud architecture and deployments.

Certificates or Licenses are pluses:

    • Certification Information Systems Security Professional (CISSP)
    • AWS Certified Security Specialty
    • CompTIA Security+
    • Microsoft Certified: Security Engineer Associate
    • HashiCorp Certified: Terraform Associate
    • HashiCorp Certified: Vault Associate
    • CyberArk Defender, Sentry, or Guardian

Reference: 2707248884

CareerAddict

Alert me to jobs like this:

Amplify your job search:

CV/résumé help

Increase interview chances with our downloads and specialist services.

CV Help

Expert career advice

Increase interview chances with our downloads and specialist services.

Visit Blog

Job compatibility

Increase interview chances with our downloads and specialist services.

Start Test