Principal Security Engineer

Citizens Bank

$142K — $186K *
Finance & Insurance
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in Identity and Access Management or Information Security
  • Expert level knowledge of HashiCorp Vault
  • Proficient in the DevSecOps model with Agile methodologies
  • Experience with Terraform for infrastructure as code
  • Hands-on expertise with Linux and Windows Server environments
  • Familiarity with CI/CD tools like Jenkins and Git for version control
  • Strong communication skills for cross-functional collaboration

Responsibilities

  • Develop and manage HashiCorp Vault for IAM solutions
  • Utilize Agile methodology to prioritize and track tasks
  • Conduct version upgrades and maintenance tasks
  • Collaborate with teams to assess application needs
  • Configure HashiCorp Vault namespaces using Git and Terraform
  • Create and configure Jenkins pipelines for Vault interoperability
  • Monitor Vault health and performance using DataDog and Splunk

Benefits

  • Comprehensive medical, dental, and vision coverage
  • Retirement benefits including 401(k) options
  • Flexible work arrangements to promote work-life balance
  • Maternity and paternity leave for new parents
  • Education reimbursement for professional development
  • Wellness programs to support employee health
  • Above-average paid time off policy exceeding mandatory requirements
Full Job Description
Job Description

DevSecOps Engineer - IAM

As a DevSecOps Engineer, you will be responsible for the development, administration, maintenance, promotion, and support of the HashiCorp Vault identity-based secrets and encryption management system across multiple environments for the Citizens Bank Identity and Access Management (IAM) Engineering team. As a team, IAM Engineering is responsible for developing and IAM solutions that facilitate the acceleration and adoption of cloud-native, computing, secrets management in code for Citizens Bank. This includes building patterns and processes that allow for reduced friction in cloud development and applications teams to ingest IAM secure code, API, policies, and controls as part of the normal CI/CD pipeline. The DevSecOps Engineer will work to ensure that the HashiCorp Vault technical design is sound, that services are highly available and performant, that customers are onboarded and configured dependent on their needs, and that required maintenance is performed as necessary. Responsibilities include:
• Knowledge of AWS, Azure, and HashiCorp Vault
• Using an Agile methodology, assist with setting task and project priority and following through the board as decided and set
• Perform version upgrades, machine image builds and deployment, and other maintenance tasks as needed
• Meet and work with others to understand application and user needs from HashiCorp Vault
• Using Git and Terraform, define, and configure HashiCorp Vault namespaces for a variety of secrets engines and backends
• Assist with Jenkins pipeline creation, configuration, and HashiCorp Vault interoperability
• Using the DataDog and Splunk data aggregation tools to monitor health and performance of the HashiCorp Vault infrastructure
• Ensure that security policy, compliance requirements, and Cloud platforms best practices are implemented across all projects

Experience and Skills:
• Previous experience in Identity and Access Management or Information Security with a solid understanding of the requirements and goals of IAM as a regulatory and security function
• Expert level experience with HashiCorp Vault
• Experience with the Dev/Sec/Ops model and Agile tools and processes, including Atlassian products such as Jira and Confluence, Trello, Scrum and KanBan
• Experience with HashiCorp Terraform
• Experience with the Linux and Windows Server operating systems
• Experience with version control systems, primarily Git
• Experience with Kubernetes and Docker
• Experience with automation/CI/CD systems, primarily Jenkins
• Experience with building scalable Cloud infrastructure and processes
• Experience in CI/CD methodology and applying the DevOps mindset and principles
• Experience in systems operations management and maintaining environments for enterprise applications
• Proven experience in collaborating with cross-functional business units
• Experience managing Cloud platform spending through metrics and reporting
• Excellent written and verbal communication skills

Education:
• Bachelor's degree in computer science or comparable field or equivalent experience

Hours & Work Schedule

Hours per Week: 40

Work Schedule: Monday through Friday, occasional after-hours as needed to perform job duties

PayTransparency

The salary range for this position is $142,000-$186,000 per year, plus an opportunity to earn additional incentive earnings (if applicable). Actual pay is based on various factors including, but not limited to, the budget, work location, and relevant skills and experience. We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more. Note, Citizens' paid time off policy exceeds the mandatory, paid sick or paid time-away policy of every local and state jurisdiction in the United States. For an overview of our benefits, visit Citizens Benefits.

Similar Jobs

More Jobs at Citizens Bank

More Finance & Insurance Jobs

Find similar Principal Security Engineer jobs: