DevOps- Secrets Cloud Engineer

$90,000 - $142,500/Yr

State Street Corporation - Quincy, MA

posted 2 months ago

Full-time
Quincy, MA
Securities, Commodity Contracts, and Other Financial Investments and Related Activities

About the position

The DevOps Secrets Engineer will be part of the corporate information security organization, focusing on the analysis, development, and implementation of processes and technologies for secrets and key management services. This role involves building a multi-cloud infrastructure to manage application secrets and keys in accordance with corporate security policies, ensuring timely delivery and security compliance.

Responsibilities

  • Delivery of the Cloud based secrets and key management technologies, policies, automation, integration, software and systems patching.
  • Lead projects to develop and deliver new security features and expand coverage to new use cases and achieve cost efficiencies through standardization.
  • Lead and conduct proof of concepts that validate the quality, efficiency and performance of secrets management solutions.
  • Contribute to secrets infrastructure design, including provisioning, distribution, scaling access policies, SSH key management, API key management, and reporting.
  • Design, configure, and maintain secrets solutions for storage, machine auth, infrastructure components, cloud native product, applications, databases, cloud services (SaaS).
  • Integrate the secrets infrastructure with various technologies such as Service Now, Kubernetes, SailPoint or other top IDM solutions.
  • Provide security consultation on internal projects focusing on business needs and how data is transmitted internally and externally.
  • Authoring and maintaining documentation procedures, inventories, and diagrams for secrets solutions and processes.
  • Monitors and responds to capacity and performance needs of the secrets infrastructure.
  • Provides regular reports to leadership regarding security, capacity, usage, and licensing.
  • Provide leadership in reducing privileged access and accelerating least privileged access.

Requirements

  • Bachelor's Degree in Information Technology, Computer Science or other related fields.
  • Industry certifications in cyber or identity security attesting to broad knowledge of security best practices and design.
  • 2-5 years administering and maintaining secrets solutions such as Conjure, HashiCorp Vault, Azure keystore, AWS secrets manager, AWS KMS.
  • Work history in delivering mission critical security services to large company in multi-cloud and globally distributed environment.
  • Experience working with SIEM integration (Splunk) and UBA/Threat Analytics.
  • Background working in a large IT organization with responsibility for supporting the technology and processes in the cyber security domain and controls program, preferably in a financial services organization.
  • Experience with server hardening and advanced designing secure platforms.
  • Understanding of zero trust security and cloud native machine authentication.
  • Experience with Service Life Cycle or Agile Frameworks.
  • Good verbal and written communication skills.
  • Advanced research, analytical, and problem-solving skills.
  • Effective in leading resources to deliver large goals and objectives.
  • Practical skills presenting findings, conclusions, alternatives, and information clearly and concisely.
  • Experience in developing automated solutions and processes using Ansible, Puppet, Python, BASH for UNIX/Linux.
  • Strong knowledge of modern cloud compute automated provisioning DevOps Pipelines using technologies such as: Terraform, Harness, YAML, Jenkins, JFrog, Sonar, VeraCode, Lamda.

Benefits

  • Salary Range: $90,000 - $142,500 Annual

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service