Privileged Access Management Developer (HashiVault Focus)

Roche
Municipality of Madrid, Spain
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior

Job location

Municipality of Madrid, Spain

Tech stack

API
Agile Methodologies
Amazon Web Services (AWS)
Azure
Unix
Cipher
Encodings
Continuous Integration
DevOps
Github
Identity and Access Management
Information Technology Operations
Python
Key Management
Network Security
Lightweight Directory Access Protocols (LDAP)
Powershell
Red Hat Enterprise Linux - RHEL
Ansible
Zero Trust Network Access
Secure Coding
Vault (Revision Control System)
Software Vulnerability Management
YAML
Scripting (Bash/Python/Go/Ruby)
Google Cloud Platform
Cyberark
Gitlab
Infrastructure Automation Frameworks
Information Technology
Hashicorp
Enterprise Integration
3-tier Architectures
REST
Terraform
Devsecops
GXP
Docker
Jenkins

Job description

In this role, you will work with growing autonomy on defined tasks, contribute to various stages of the product lifecycle, and proactively identify solution-level improvements within the PAM domain., 1. Vault Development & Automation

  • Implement secret management features, integrations, and automation with a primary focus on HashiCorp Vault.
  • Develop and deploy automation scripts using Python, PowerShell, Ansible, and YAML to streamline day-to-day operations.
  • Build self-service portals and APIs to facilitate effortless secret usage, empowering application teams and embedding DevSecOps principles into access workflows.
  1. Pipeline Integration
  • Enhance and maintain Infrastructure-as-Code (IaC) toolchains.
  • Leverage DevOps and CI/CD tools (Jenkins, GitLab, GitHub Actions, Terraform) to integrate secure workflows into major cloud platforms (AWS, Azure, GCP).
  1. Operations & Support Excellence
  • Serve as a Tier 3 technical contact, participating in and leading troubleshooting efforts for complex infrastructure and security tools.
  • Follow and implement relevant ITIL, GxP, Product Management, and Agile methodologies (Request, Incident, Change, and Problem Management).
  • Proactively monitor systems for performance, capacity, and vulnerability management.
  • Provide 24x7 support for major and critical issues (requires flexibility regarding working hours).
  1. Stakeholder Management & Collaboration
  • Collaborate with a global team to improve capabilities for business users and security staff across Vault, CyberArk, and Red Hat IDM.
  • Identify and engage key technical and business stakeholders to elicit, clarify, and validate security requirements.
  • Deliver tailored communication, facilitate meetings, and provide clear incident updates.

Requirements

  • Education: Bachelor's Degree in Computer Science, Engineering, a related discipline, or equivalent industry-accredited certifications.
  • Experience: 1-3 years of experience in an IT operations or security role, preferably within a global organization or regulated environment.
  • Secrets Management: Strong understanding of PAM concepts, with hands-on experience in HashiCorp Vault.
  • Automation & Scripting: Proficiency with REST APIs, infrastructure automation (Ansible, Terraform), scripting (Python, PowerShell), and Docker.
  • Cloud & DevOps: Experience with DevOps practices, IaC toolchain support, and general knowledge of Cloud IAM (AWS, Azure, or GCP).
  • Language: Strong spoken and written English.

Preferred (Bonus) Skills

  • Additional PAM Tools: Knowledge or experience supporting CyberArk and/or Red Hat IDM (including Unix Access Management and LDAP).
  • Network Security: Familiarity with network security concepts, including SSL/TLS protocols, cryptography, key exchanges, cipher suites, and trust validation.
  • Security Frameworks: Strong grasp of secure development practices, Zero Trust principles, and common web vulnerabilities.

Core Competencies

  • Communication: Excellent negotiation, documentation, and interpersonal skills; ability to articulate complex technical concepts to both developers and business stakeholders.
  • Innovation & Autonomy: A mindset for championing secure, automated solutions that enhance developer efficiency, with a proven ability to handle moderate complexity and navigate stakeholder landscapes.
  • Mentorship: Ability to actively mentor junior teammates and foster a security-first culture.

Apply for this position