Lead Machine Identity Engineer

offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The impact you will have in this role:

Cybersecurity (IAM) Engineering and Operations provides outstanding and versatile security services to the enterprise. The Secrets Team is passionate about automating, migrating, and enhancing machine-to-machine secrets management for the enterprise to build a more secure platform for the enterprise and its customers. This position is a domain expert (SME) for IAM/Secrets Management and is responsible for analyzing complex issues to centralize, automate, and manage enterprise secrets while simultaneously exploring technological advancements and new functionalities that fall within the zero trust methodologies.

Your Primary Responsibilities:

• Architect, deploy, and sustain an innovative HashiCorp Vault platform that prioritizes reliability and scalability

• Spearhead daily operations, maintenance, and monitoring of the Vault environment while demonstrating Agile frameworks

• Assist in mentoring junior engineers in Agile standard processes, elevating team proficiency and cohesiveness

• Be proficient in authoring and handling Infrastructure as Code (IaC) solutions, automating deployment pipelines to minimize manual interactions

• Embrace or adapt to a platform-centric approach, emphasizing reusable and scalable solutions

• Collaborate seamlessly across teams to engineer a system with a platform-first approach, as opposed to a tool-centric one

• Continually advance your expertise in Vault and cybersecurity standard methodologies to adapt to a constantly evolving thread landscape

• Actively participate in the development, deployment, maintenance, and periodic testing of disaster recovery plans and ensuring rapid response in critical situations

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **

Qualifications:

• Minimum 6 years of related experience

• Bachelor's degree (preferred) or equivalent experience

Talents Needed for Success:

• Understanding of Zero Trust Architecture

• Expertise in Dev-Ops, CI/CD, and full lifecycle management

• Proven leadership capabilities, including the ability to understand nuanced requirements and guide junior engineers toward effective solutions

• Hands-on experience with HashiCorp Vault or other Privileged Access Management (PAM) tools

• Understanding of observability and monitoring tools

• Familiarity with enterprise Identity Access Management. Good background in addressing security and regulatory requirements

• Versatile experience with working in a cloud, on-premises, and/or hybrid environment

• Proficiency with Linux/Unix and a solid understanding of shell scripting

• Exceptional problem-solving abilities, strong analytical skills, and a willingness to think creatively

• Kanban is highly desirable, but any Agile experience is acceptable

Nice to have:

• Terraform experience is preferred but any IaC experience is a plus

• Hands-on experience working with Splunk, Grafana, and/or Elasticsearch

• Experience working in a Network Operations Center (NOC) or a similar support capacity

• AWS or other equivalent certifications

• Familiarity with modern networking technologies

• Analytical, strategic, problem-solving ability

• Works well as part of team. Self-motivated, tenacious learner

• Curious and agile approach

• Self-starter and highly motivated individual

• Able to support multiple projects in a fast-paced work environment

• Able to provide adequate guidance & governance to project teams during component integration

• Excellent organizational, communication and leadership skills

We offer top class training and development for you to be an asset in our organization!

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.