Sr DevOps/Cloud Operations Engineer - HashiCorp VaultThe Matlen Silver Group, Inc. • Chandler, Arizona, United States
Sr DevOps/Cloud Operations Engineer - HashiCorp Vault
The Matlen Silver Group, Inc.
- Chandler, Arizona, United States
- Chandler, Arizona, United States
À propos
Sector: Banking
Position Overview We are seeking a highly skilled DevOps Support Engineer with strong expertise in HashiCorp Vault and cloud infrastructure to support enterprise-grade secrets management platforms across AWS, Azure, and GCP environments. This role will be responsible for the day-to-day operations, monitoring, incident management, platform maintenance, and onboarding support for Vault services used by application and platform engineering teams.
The ideal candidate will possess strong operational experience in cloud-native environments, secrets management, IAM integration, Infrastructure as Code (IaC), and production support practices.
Key Responsibilities
Operate, monitor, and maintain HashiCorp Vault clusters across AWS, Azure, and GCP, ensuring platform availability, performance, and reliability.
Perform routine operational activities including Vault sealing/unsealing, leadership verification, snapshot validation, health checks, and disaster recovery readiness assessments.
Support and maintain Vault Raft storage clusters, monitor replication status, and coordinate recovery procedures when required.
Execute Vault upgrades, patching, configuration updates, and maintenance activities following established change management processes.
Validate backup and automated snapshot processes, including cloud-based backup storage solutions.
Application Onboarding & Secrets Management
Support onboarding of applications and services to Vault using authentication mechanisms such as AWS IAM Auth, OIDC, AppRole, and other approved methods.
Assist application teams with policy creation, role configuration, access troubleshooting, and security best practices.
Manage secret lifecycle operations including creation, rotation, renewal, revocation, and auditing.
Provide operational guidance and support for Vault integrations across enterprise applications.
Security & Compliance
Collaborate with Security, IAM, and Platform Engineering teams to ensure compliance with enterprise security standards and non-human identity management requirements.
Enforce least-privilege access principles and platform governance standards.
Support audits, compliance reviews, and security assessments related to secrets management and privileged access controls.
Monitoring, Incident Response & Reliability
Monitor Vault health, telemetry, logs, and alerts using enterprise observability and logging platforms.
Act as an escalation point for Vault-related incidents, performing troubleshooting, root cause analysis, and resolution coordination.
Participate in incident, problem, and change management processes aligned with ITIL and SRE practices.
Contribute to post-incident reviews and continuously improve operational runbooks and support procedures.
Support disaster recovery testing, failover exercises, and platform resilience validation across node, availability zone, and regional failure scenarios.
Automation & Infrastructure
Maintain and support Infrastructure-as-Code (IaC) environments using Terraform, Ansible, and JSON-based configurations.
Partner with engineering teams to integrate Vault into CI/CD pipelines and deployment workflows using tools such as GitHub Actions, Jenkins, and CircleCI.
Support Vault integrations with container orchestration platforms including OpenShift, Rancher, and Kubernetes-based environments.
Required Qualifications
5+ years of experience supporting enterprise infrastructure, DevOps, or cloud platforms.
Hands‑on operational experience supporting and administering HashiCorp Vault or CyberArk in production environments.
Strong knowledge of AWS services including IAM, EC2, VPC, networking, and S3.
Experience supporting high‑availability (HA) and disaster recovery (DR) architectures in cloud environments.
Strong understanding of secrets management, privileged access management (PAM), non‑human identities, and least‑privilege security models.
Experience with Infrastructure as Code (IaC) tools including Terraform, Ansible, and JSON‑based configurations.
Experience troubleshooting authentication, authorization, access control, and infrastructure‑related issues.
Familiarity with production support processes, incident management, change management, and operational runbooks.
Strong analytical, troubleshooting, and communication skills.
Preferred Qualifications
Experience with Vault Enterprise features including replication, namespaces, and disaster recovery.
Experience integrating Vault with HSM or CloudHSM solutions.
Strong understanding of cloud identity services:
AWS IAM Roles & Policies
Azure Managed Identities
GCP Service Accounts
Experience with containerization and orchestration platforms such as OpenShift, Rancher, Kubernetes, or Docker.
Familiarity with monitoring and observability tools such as Splunk, Datadog, Prometheus, Grafana, ELK, or cloud‑native monitoring platforms.
Experience working with enterprise IAM, PAM, or cybersecurity platforms in large‑scale environments.
Nice to Have
HashiCorp Vault Certification.
AWS, Azure, or GCP Cloud Certifications.
SRE or ITIL certification and operational support experience.
Experience supporting regulated or highly secure enterprise environments.
Equal Employment Opportunity Matlen Silver is an Equal Opportunity Employer and considers all applicants for all positions without regard to race, color, religion, gender, national origin, age, sexual orientation, veteran status, the presence of a non‑job‑related medical condition or disability, or any other legally protected status.
Benefits
Health, vision, and dental insurance (single and family coverage)
401(k) plan (employee contributions only)
#J-18808-Ljbffr
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.