Damia Group LTD
Permanent DV Cleared Senior Infrastructure Engineer- Full time on site (Hampshire) - £60,000-£70,000 per annum - plus +bonus, pension,private medical My client is seeking a highly skilled and motivated Senior Infrastructure Engineer Essential Skills and Qualities Team Player Windows Server 2016+ administration. RedHat Openshift Linux (CentOS/RedHat/Ubuntu) EUD provisioning (Autopilot), maintenance, patching and hardening. SSO - concepts and operation. Understanding of working in protectively marked environments. VMware Azure Networking Automation (Scripting ansible/powershell) Desirable skills: Kubernetes administration eg VMware TKGI VMware vSphere/vCenter/VCF. Azure/Microsoft 365 administration. DevSecOps Tooling Elastic Nessus Application Packaging HashiCorp Terraform HashiCorp Vault Experience working in Agile sprints Responsibilities likely to include: Maintain, improve, and secure multi-classification, virtualised, collaboration and development environments. Work with IT infrastructure colleagues to improve the clients 'Secure by Design' capabilities, internally and across its projects. Provide Infrastructure support to the clients public cloud SaaS offerings (Office 365) as well as project-based systems (public, private and hybrid clouds) in implementation and support life cycles. Perform maintenance tasks on the infrastructure through change control. Assist with monitoring and management of their project-based ticketing and alerting systems for new changes and security alerts. Triage monitoring alerts and perform appropriate action. Maintain monitoring components in line with infrastructure developments. Ensure all platforms are patched in line with provider recommendations and security policy. Quickly and accurately assess impact of incidents, initiate return to service and ensure follow up actions are completed. Identify trends and problems and plan changes to improve stability and performance. Maintain cutting edge knowledge and skills in the design and build of secure public, private, and hybrid cloud and network technologies. Develop personal knowledge through study/research toward vocational certifications in relevant technologies/vendors. Advise customers and project teams on infrastructure and support aspects. Cascade knowledge through knowledge articles for the team and wider organisation. Permanent DV Cleared Senior Infrastructure Engineer- Full time on site (Hampshire) - £60,000-£70,000 per annum - plus +bonus, pension,private medical Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
Permanent DV Cleared Senior Infrastructure Engineer- Full time on site (Hampshire) - £60,000-£70,000 per annum - plus +bonus, pension,private medical My client is seeking a highly skilled and motivated Senior Infrastructure Engineer Essential Skills and Qualities Team Player Windows Server 2016+ administration. RedHat Openshift Linux (CentOS/RedHat/Ubuntu) EUD provisioning (Autopilot), maintenance, patching and hardening. SSO - concepts and operation. Understanding of working in protectively marked environments. VMware Azure Networking Automation (Scripting ansible/powershell) Desirable skills: Kubernetes administration eg VMware TKGI VMware vSphere/vCenter/VCF. Azure/Microsoft 365 administration. DevSecOps Tooling Elastic Nessus Application Packaging HashiCorp Terraform HashiCorp Vault Experience working in Agile sprints Responsibilities likely to include: Maintain, improve, and secure multi-classification, virtualised, collaboration and development environments. Work with IT infrastructure colleagues to improve the clients 'Secure by Design' capabilities, internally and across its projects. Provide Infrastructure support to the clients public cloud SaaS offerings (Office 365) as well as project-based systems (public, private and hybrid clouds) in implementation and support life cycles. Perform maintenance tasks on the infrastructure through change control. Assist with monitoring and management of their project-based ticketing and alerting systems for new changes and security alerts. Triage monitoring alerts and perform appropriate action. Maintain monitoring components in line with infrastructure developments. Ensure all platforms are patched in line with provider recommendations and security policy. Quickly and accurately assess impact of incidents, initiate return to service and ensure follow up actions are completed. Identify trends and problems and plan changes to improve stability and performance. Maintain cutting edge knowledge and skills in the design and build of secure public, private, and hybrid cloud and network technologies. Develop personal knowledge through study/research toward vocational certifications in relevant technologies/vendors. Advise customers and project teams on infrastructure and support aspects. Cascade knowledge through knowledge articles for the team and wider organisation. Permanent DV Cleared Senior Infrastructure Engineer- Full time on site (Hampshire) - £60,000-£70,000 per annum - plus +bonus, pension,private medical Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
Request Technology - Robyn Honquest
Chicago, Illinois
Security Engineering - PAM - Secrets SALARY: $150K - $160K plus 15% bonus LOCATION: CHICAGO Secrets and privileged access management hardware security modules HSMs integrating secrets management PKI sessions management python ansible terraform and YAML HSMS MS PKI Hashicorp vault CyberArk AIM PSMP PVWA CPM vault leveraging APIs cryptographic operations As a member of the Secrets and Privileged Access Management team you are responsible for applying skills and knowledge to perform functions for Privileged Access and Secrets Management solutions, Hardware security modules (HSMs), and encryption practices. You must ensure to take a security first approach when deploying or integrating Secrets Management, PKI, Sessions Management, or authentication integrations under the team's purview using agile methodology. Primary Duties and Responsibilities: To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Design, document, deploy, and support PAM solutions supporting vaulting, session management, hardcoded credential removal, and support integrations with PAM solution for secure secrets management supporting app-to-app communication. Design, document, develop, and support PAM integrations to support automated password rotations and establishing secure sessions through jump host solution. Design, document, implement, and maintain our Certificate Authority PKI infrastructure. Ensure certificates are correctly issued, renewed, and revoked as necessary. Implement and manage certificate templates and revocation configurations. Implement, configure, and maintain HSMs to support PKI operations. Work with vendors to ensure systems are patched and up to date. Address and troubleshoot issues related to PAM, PKI, and HSM solutions. Implement and manage encryption tools and software. Ensure team solutions are monitored following best practice. Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation. Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation. Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program. Document, review, and update run books supporting Secrets and Privileged Access Management solutions. Develop and maintain encryption standards, practices, and solutions. Develop and maintain documentation related to PAM policies, procedures, and configurations. Qualifications: Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies. Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications. Experience with Microsoft certificate authority PKI infrastructure. Experience with hardware security modules (HSMs). Experience with Python, Ansible, Terraform, and YAML packages. Requires in-depth knowledge of PAM and Secrets Management best practices. Requires in-depth knowledge of encryption algorithms, protocols, and best practices. Working knowledge of system monitoring techniques and tooling. Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. 5+ years of experience with PAM tools and technologies. 3+ years of experience in PKI infrastructure including Microsoft Certificate Authority. Bachelor's degree in computer science, Information Technology, or related field. Technical Skills: Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT). Hands on experience leveraging APIs. Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools. Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies. Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities. Education and/or Experience: 5+ years of experience with security engineering activities and testing. 5+ years of experience with privileged access management platforms. 3+ years of experience with HSM, PKI, Microsoft Certificate Authority. 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs) 2+ years of experience with cloud architecture and deployments. Certificates or Licenses: CyberArk Defender, Sentry, or Guardian HashiCorp Certified: Terraform Associate HashiCorp Certified: Vault Associate Certification Information Systems Security Professional (CISSP) AWS Certified Security Specialty CompTIA Security+ Microsoft Certified: Security Engineer Associate
Security Engineering - PAM - Secrets SALARY: $150K - $160K plus 15% bonus LOCATION: CHICAGO Secrets and privileged access management hardware security modules HSMs integrating secrets management PKI sessions management python ansible terraform and YAML HSMS MS PKI Hashicorp vault CyberArk AIM PSMP PVWA CPM vault leveraging APIs cryptographic operations As a member of the Secrets and Privileged Access Management team you are responsible for applying skills and knowledge to perform functions for Privileged Access and Secrets Management solutions, Hardware security modules (HSMs), and encryption practices. You must ensure to take a security first approach when deploying or integrating Secrets Management, PKI, Sessions Management, or authentication integrations under the team's purview using agile methodology. Primary Duties and Responsibilities: To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Design, document, deploy, and support PAM solutions supporting vaulting, session management, hardcoded credential removal, and support integrations with PAM solution for secure secrets management supporting app-to-app communication. Design, document, develop, and support PAM integrations to support automated password rotations and establishing secure sessions through jump host solution. Design, document, implement, and maintain our Certificate Authority PKI infrastructure. Ensure certificates are correctly issued, renewed, and revoked as necessary. Implement and manage certificate templates and revocation configurations. Implement, configure, and maintain HSMs to support PKI operations. Work with vendors to ensure systems are patched and up to date. Address and troubleshoot issues related to PAM, PKI, and HSM solutions. Implement and manage encryption tools and software. Ensure team solutions are monitored following best practice. Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation. Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation. Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program. Document, review, and update run books supporting Secrets and Privileged Access Management solutions. Develop and maintain encryption standards, practices, and solutions. Develop and maintain documentation related to PAM policies, procedures, and configurations. Qualifications: Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies. Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications. Experience with Microsoft certificate authority PKI infrastructure. Experience with hardware security modules (HSMs). Experience with Python, Ansible, Terraform, and YAML packages. Requires in-depth knowledge of PAM and Secrets Management best practices. Requires in-depth knowledge of encryption algorithms, protocols, and best practices. Working knowledge of system monitoring techniques and tooling. Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. 5+ years of experience with PAM tools and technologies. 3+ years of experience in PKI infrastructure including Microsoft Certificate Authority. Bachelor's degree in computer science, Information Technology, or related field. Technical Skills: Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT). Hands on experience leveraging APIs. Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools. Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies. Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities. Education and/or Experience: 5+ years of experience with security engineering activities and testing. 5+ years of experience with privileged access management platforms. 3+ years of experience with HSM, PKI, Microsoft Certificate Authority. 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs) 2+ years of experience with cloud architecture and deployments. Certificates or Licenses: CyberArk Defender, Sentry, or Guardian HashiCorp Certified: Terraform Associate HashiCorp Certified: Vault Associate Certification Information Systems Security Professional (CISSP) AWS Certified Security Specialty CompTIA Security+ Microsoft Certified: Security Engineer Associate
Trust In Soda
Galway, Galway
Senior Engineer - Application Security Start Date: ASAP Contract Length: 12 Month Contract Location/Remote Working: Galway - Hybrid - 1 week Onsite, 3 weeks Remote Pay Rate: 300- 360 Euros Per Day Summary Trust in SODA is collaborating with a leading finance company who are seeking an accomplished Senior Engineer to focus on their application security. As a team member, you will play a pivotal role in steering decisions, leading deployments, and crafting integrations with their current systems. They are ideally looking for someone who would have experience in 2 or more of the following areas: DevOps, Security (ideally App Sec) and Software Development. Essentials AWS certification (advantageous) and has working experience with cloud environments. Hands on experience with automation & pipeline implementation (Testing, Continuous Integration/Continuous Delivery pipeline). Any application security experience, including Pen Testing, Static Composition Analysis (SCA), SAST, DAST, and Web Application Firewalls (WAF) would be considered a plus. Experience with data processes, including but not limited to ETL, ELT, Data Modeling, and proficiency with BI tools like PowerBI, Tableau, or similar, as well as Oracle or equivalent RDBMS, is also advantageous. Skills You possess strong engineering skills and have experience deploying maintainable, scalable multi-tiered applications. You are capable of designing and developing tools/applications. You have experience with test automation, including solid understanding of test tools. You have a security architecture mentality. Key Responsibilities Design, develop, test, deploy and maintain SAST, SCA and secret scanning tools into the CI/CD pipeline and developer workflow tools. Evaluate and leverage opensource or vendor technologies, to support the development community in eliminating application security vulnerabilities from their applications. You are a collaborative team-player in an autonomous team, owning all aspects of delivery (coding, quality, DevSecOps).
Senior Engineer - Application Security Start Date: ASAP Contract Length: 12 Month Contract Location/Remote Working: Galway - Hybrid - 1 week Onsite, 3 weeks Remote Pay Rate: 300- 360 Euros Per Day Summary Trust in SODA is collaborating with a leading finance company who are seeking an accomplished Senior Engineer to focus on their application security. As a team member, you will play a pivotal role in steering decisions, leading deployments, and crafting integrations with their current systems. They are ideally looking for someone who would have experience in 2 or more of the following areas: DevOps, Security (ideally App Sec) and Software Development. Essentials AWS certification (advantageous) and has working experience with cloud environments. Hands on experience with automation & pipeline implementation (Testing, Continuous Integration/Continuous Delivery pipeline). Any application security experience, including Pen Testing, Static Composition Analysis (SCA), SAST, DAST, and Web Application Firewalls (WAF) would be considered a plus. Experience with data processes, including but not limited to ETL, ELT, Data Modeling, and proficiency with BI tools like PowerBI, Tableau, or similar, as well as Oracle or equivalent RDBMS, is also advantageous. Skills You possess strong engineering skills and have experience deploying maintainable, scalable multi-tiered applications. You are capable of designing and developing tools/applications. You have experience with test automation, including solid understanding of test tools. You have a security architecture mentality. Key Responsibilities Design, develop, test, deploy and maintain SAST, SCA and secret scanning tools into the CI/CD pipeline and developer workflow tools. Evaluate and leverage opensource or vendor technologies, to support the development community in eliminating application security vulnerabilities from their applications. You are a collaborative team-player in an autonomous team, owning all aspects of delivery (coding, quality, DevSecOps).