Privileged Access Management Developer

Roche
Municipality of Madrid, Spain
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior

Job location

Municipality of Madrid, Spain

Tech stack

API
Agile Methodologies
Amazon Web Services (AWS)
Azure
Unix
Cipher
Continuous Integration
DevOps
Github
Identity and Access Management
Information Technology Operations
Python
Key Management
Network Security
Lightweight Directory Access Protocols (LDAP)
Powershell
Red Hat Enterprise Linux - RHEL
Ansible
Zero Trust Network Access
Secure Coding
Vault (Revision Control System)
Software Vulnerability Management
YAML
Scripting (Bash/Python/Go/Ruby)
Google Cloud Platform
Cyberark
Gitlab
Infrastructure Automation Frameworks
Information Technology
Hashicorp
Enterprise Integration
3-tier Architectures
REST
Terraform
Devsecops
GXP
Docker
Jenkins

Job description

tasks, contribute to various stages of the product lifecycle, and proactively identify solution-level improvements within the PAM domain. Job Responsibilities 1. Vault Development & Automation - Implement secret management features, integrations, and automation with a primary focus on HashiCorp Vault. - Develop and deploy automation scripts using Python, PowerShell, Ansible, and YAML to streamline day-to-day operations. - Build self-service portals and APIs to facilitate effortless secret usage, empowering application teams and embedding DevSecOps principles into access workflows. 2. Pipeline Integration - Enhance and maintain Infrastructure-as-Code (IaC) toolchains. - Leverage DevOps and CI/CD tools (Jenkins, GitLab, GitHub Actions, Terraform) to integrate secure workflows into major cloud platforms (AWS, Azure, GCP). 3. Operations & Support Excellence - Serve as a Tier 3 technical contact, participating in and leading troubleshooting efforts for complex infrastructure and

Requirements

security tools. - Follow and implement relevant ITIL, GxP, Product Management, and Agile methodologies (Request, Incident, Change, and Problem Management). - Proactively monitor systems for performance, capacity, and vulnerability management. - Provide 24x7 support for major and critical issues (requires flexibility regarding working hours). 4. Stakeholder Management & Collaboration - Collaborate with a global team to improve capabilities for business users and security staff across Vault, CyberArk, and Red Hat IDM. - Identify and engage key technical and business stakeholders to elicit, clarify, and validate security requirements. - Deliver tailored communication, facilitate meetings, and provide clear incident updates. Qualifications Minimum Requirements - Education: Bachelor's Degree in Computer Science, Engineering, a related discipline, or equivalent industry-accredited certifications. - Experience: 1-3 years of experience in an IT operations or security role, preferably within a global organization or regulated environment. - Secrets Management: Strong understanding of PAM concepts, with hands-on experience in HashiCorp Vault. - Automation & Scripting: Proficiency with REST APIs, infrastructure automation (Ansible, Terraform), scripting (Python, PowerShell), and Docker. - Cloud & DevOps: Experience with DevOps practices, IaC toolchain support, and general knowledge of Cloud IAM (AWS, Azure, or GCP). - Language: Strong spoken and written English. Preferred (Bonus) Skills - Additional PAM Tools: Knowledge or experience supporting CyberArk and/or Red Hat IDM (including Unix Access Management and LDAP). - Network Security: Familiarity with network security concepts, including SSL/TLS protocols, cryptography, key exchanges, cipher suites, and trust validation. - Security Frameworks: Strong grasp of secure development practices, Zero Trust principles, and common web vulnerabilities. Core Competencies - Communication: Excellent negotiation, documentation, and interpersonal skills; ability to articulate complex technical concepts to both developers and business stakeholders. - Innovation & Autonomy: A mindset for championing secure, automated solutions that enhance developer efficiency, with a proven ability to handle moderate complexity and navigate stakeholder landscapes. - Mentorship: Ability to actively mentor junior teammates and foster a security-first culture. Qui nous sommes Un avenir plus sain nous pousse à innover. Ensemble, plus de 100 000 employés

About the company

Chez Roche, vous pouvez être vous-même et être apprécié pour les qualités uniques que vous apportez. Notre culture encourage l'expression personnelle, le dialogue ouvert et les connexions authentiques, où vous êtes valorisé, accepté et respecté pour ce que vous êtes, vous permettant de prospérer tant personnellement que professionnellement. Voici comment nous visons à prévenir, arrêter et guérir les maladies et à garantir à chacun l'accès aux soins de santé aujourd'hui et pour les générations à venir. Rejoignez Roche, où chaque voix compte. La position About the Team You will join the Enterprise Privileged Access Management (PAM) team-a multicultural, global group focused on Identity and Access Management (IAM). While your primary technical focus will be HashiCorp Vault, you will be part of a broader team that collectively manages and supports a diverse enterprise security landscape, including CyberArk and Red Hat IDM. In this role, you will work with growing autonomy on defined

Apply for this position