Principal Systems Engineer

Principal, HashiCorp Vault Expert

The Purpose of this Role:

In this role on the Privileged Access Management team, your primary responsibility will be to own and operate Fidelity's HashiCorp Vault application. This is an enterprise-class installation providing secrets management services to over 5,000 business unit applications.

The Value you Deliver

: You will design, develop, and support new and improved access management capabilities that meet Fidelity's stringent cybersecurity policies and requirements. You will administer critical production environments including implementation of monitoring, upgrades, performance & capacity improvements, certifying disaster readiness, improving CI/CD with process automation, and analyzing key metrics and trends. We operate in an Agile framework where you will have an opportunity to participate in sprint planning to provide prioritization, and realistic and achievable estimates. You will also contribute towards continuous improvement efforts aimed at increasing the efficiency and velocity of the team

The Skills That Are Key To This Role

• 9+ years of hands-on experience in administering and operating HashiCorp Vault, with demonstrated proficiency in:
• Performing Vault upgrades and version management.Setting up and maintaining Disaster Recovery (DR) and High Availability (HA) configurations.Managing secrets lifecycle, access policies, and secure integrations with applications and services. Troubleshooting and optimizing Vault performance in production environments.
• Strong background in Linux/UNIX systems administration and application management.
• Experience with cloud platforms such as AWS and Azure, including application migration and architecture design.
• Familiarity with networking concepts, firewalls, and load balancers.
• You have experience building automated pipelines and deploying with CI/CD technologies such as Jenkins, Git, Ansible, Chef, Artifactory, AWS Cloud Formation Templates, Terraform, EC2, Lambda, Docker/Kubernetes, and KMS
• You develop advanced, customized workflows and automated processes for/with vendor applications
• You have strong scripting & automation skills, specifically in Python and Ansible
• You have excellent written and verbal communication skills with the ability to present to both technical and business audiences
• You have demonstrated experience in leading small technical teams
• You have the ability to independently perform systems design & architecture work to satisfy technical objectives and meet business requirements
  

The Expertise we are Looking for

• Bachelor's degree in Computer Science, Computer Engineering, Computer Systems Networking, Information Systems/Science, or a related discipline
  

How Your Work Impacts The Organization

In this position you will join Fidelity's Enterprise Cybersecurity business unit as a member of the Privileged Access Management team. We are a dynamic, high visibility team that provides a variety of access management services to all of Fidelity's business units. The Privileged Access Management team is comprised of engineers located in the US, Ireland, and India. We leverage an Agile operating model to install, configure, operate, and maintain a set of in-house and vendor applications providing a multitude of access management capabilities to the firm. We are a DevOps team that engages in systems engineering, software engineering, and production services support.

Certifications

Category:Information Technology