DevOps Secrets Engineer
exxonmobil
Job Description
What you will do
-
Delivery of the Cloud based secrets and key management technologies, policies, automation, integration, software and systems patching.
-
Lead projects to develop and deliver new security features and expand coverage to new use cases and achieve cost efficiencies through standardization.
-
Contribute to secrets infrastructure design, including provisioning, distribution, scaling access policies, SSH key management, API key management, and reporting.
-
Design, configure, and maintain secrets solutions for storage, machine auth., infrastructure components, cloud native product, applications, databases, cloud services (SaaS).
-
Integrate the secrets infrastructure with various technologies such as Service Now, Kubernetes, Sail Point or other top IDM solutions.
-
Provide security consultation on internal projects focusing on business needs and how data is transmitted internally and externally.
-
Authoring and maintaining documentation procedures, inventories, and diagrams for secrets solutions and processes.
-
Monitors and responds to capacity and performance needs of the secrets infrastructure.
-
Provides regular reports to leadership regarding security, capacity, usage, and licensing.
-
Provide leadership in reducing privileged access and accelerating least privileged access.
About You
Skills and Qualifications
-
Bachelor's Degree in Information Technology, Computer Science or other related fields with a score of 60% and above.
-
Industry certifications in cyber or identity security attesting to broad knowledge of security best practices and design.
-
2-5 years administering and maintaining secrets solutions such as Conjure, HashiCorp Vault, Azure keystore, AWS secrets manager, AWS KMS.
-
Work history in delivering mission critical security services to large company in multi-cloud and globally distributed environment.
-
Experience working with SIEM integration (Splunk) and UBA/Threat Analytics.
-
Experience working in a large IT organization.
-
Background in supporting the technology and processes in the identity and access management and cyber security domain.
-
Experience with server hardening and advanced designing secure platforms.
-
Understanding of zero trust security and cloud native machine authentication .
-
Experience with Service Life Cycle or Agile Frameworks.
-
Good verbal and written communication skills.
-
Advanced research, analytical, and problem-solving skills.
-
Effective in leading resources to deliver large goals and objectives.
-
Practical skills presenting findings, conclusions, alternatives, and information clearly and concisely.
-
Experience in developing automated solutions and processes using PowerShell, Ansible, Puppet, Python.
-
Strong knowledge of modern cloud compute architecture and experience with DevOps Pipelines using technologies such as : Terraform, Jenkins, JFrog, Sonar, Lamda.
Preferred Qualifications/ Experience
-
Practical skills presenting findings, conclusions, alternatives, and information clearly and concisely.
-
Any Enterprise security knowledge and experience.
-
Other Cloud technology / experience