Senior IAM Security Engineer

Develop, test and perform OS and software upgrades, prepare for and perform business continuity activities and address vulnerabilities Interact with Vendor and Swift internal teams to ensure availability of, maintenance, enhancements to, and integrated with all the Swift ecosystems (MS-AD, monitoring, backup, SIEM, …) of SSMS /Vault infrastructure Investigate and resolve issues that impacts or could potentially impact the availability of SSMS and its Vault infrastructure Work with team to expand services and visibility by continuing to review offering, speaking with stakeholders and assisting new application teams to adopt and automate Assist application team(s) with onboarding digital secrets to the Secret Management including reviewing environment for authentication method, secrets engine to onboard secrets, assist in developing compliance reporting, policy review/enforcement, end to end lifecycle management activities Work with the vendors' delivery teams, maintaining a detailed design, request the pre-requisites and deploy the selected solutions/features in a highly available, resilient and secure configuration. Ensure the solution is integrated with all the Swift ecosystems (MS-AD, monitoring, backup, SIEM, …) Enhance and provide regular reporting and accountability on key metrics and agreed upon deliverables and ensure that the team is performing according to them Maintain a customer guide that can be reused by the application team(s) for future onboarding actions Maintain a runbook for the Secret Management service infrastructure and work with the administrators to maintain and enhance the administrators guide On-call on a rotational basis

Do you have experience in Terraform?, IAM Security Engineer with strong expertise in securing and managing enterprise environments. The ideal candidate will have hands-on experience with HashiCorp Vault, Terraform, RHEL, and Ansible, and will contribute to the deployment, hardening, and automation of security solutions. This role requires a proactive individual who can troubleshoot complex issues, integrate platforms, and develop automation workflows., * HashiCorp Vault Enterprise administration (deployment in HA, troubleshooting, monitoring, hardening, integrations).

• Terraform hands-on experience (module development).
• Red Hat Linux experience (troubleshooting, monitoring, hardening).
• Ansible experience (developing roles, playbooks, AWX or Ansible Tower).

Preferred Skills (Differential)

• Go development (especially for Vault plugin development).
• Jenkins (pipeline development and automation).
• Splunk (query creation, dashboards, and alerting).
• ELK Stack (integration, queries, alerts, dashboards).
• SELinux (policy development and troubleshooting)., * Strong problem-solving and analytical thinking.
• Excellent communication and documentation skills.
• Ability to collaborate effectively in cross-functional teams.
• Adaptability to rapidly changing environments and technologies.
• Attention to detail and commitment to security best practices., 3+ years of experience in security management and automation. 3+ years of experience with Hashicorp Vault Enterprise