Senior Infrastructure Integration Specialist

Sr. Infrastructure Integration Specialist

Candidate will be overseeing the infrastructure projects, security assessment, transition of Infrastructure and tools under global operating model, handle day to day production issues, carry out root cause analysis/resolution for system issues, defects, and minor enhancements, supporting project transition within the Cyber Security & Networks department.

Responsibilities

1. Manage various franchise critical security application Infrastructure, specifically in secrets and privileged access management domain.
2. Own and drive the deployment (from scratch), maintenance and L3 support of managed applications.
3. Collaborate with various internal and external stakeholders/support teams and product vendors to manage all the aspects of the support process.
4. Gather product requirements, deploy solutions mapped to business needs and continuously evaluate to stay current with evolving requirements.
5. Size and procure the required hardware/software for new deployments and collaborate with various teams like system admin, DBA and others to build the required Infra.
6. Work with client applications to provide integration/onboarding guidance.
7. Facilitate security assessments and remediation to ensure safety and soundness.
8. Document the product, process, and train L1/2 teams for BAU support.
9. Automation of manual tasks and continuous review/upgrade of stale processes.
10. Provide SME (Subject Matter Expert) support for the managed applications.
11. Capacity, Performance and Stability reporting and Management.
12. Lead initiative to develop/improve scripts and other programs for system monitoring and maintenance.
13. Lead Infrastructure projects and facilitate security assessment and remediation for the infrastructure associated the applications in scope.
14. Be responsible to assess the risk and associated impact of all operational issues and change events and react quickly to escalate to technology management in a timely manner when required.
15. Continuously keep the Knowledge Share repository up to date.
16. Work with demanding global partners within aggressive timelines; analyze and resolve technical problems with application, system, and network.
17. Develop or modify IAM automation solutions
18. Work on change creation and implementation
19. Identify and remediate vulnerabilities
20. Collaborate with the infrastructure team to address issues identified by multiple scanning solutions
21. Monitor production alerts and review them as needed
22. Collaborate with engineering and application teams to troubleshoot production bugs
23. Perform IAM connector deployments and testing
24. Schedule and configure automated jobs
25. Provide L2 on-call support as needed

Required Technical Skills:

1. Hands-on experience working with Linux and Windows Servers
2. Proficiency in one or more of these scripting languages – Python, Unix Shell, Perl & PowerShell scripting.
3. Experience/basic understanding of CHEF, Ansible, CI/CD.
4. Good grasp of networking concepts and protocols
5. DevOps/DevSecOps/SRE experience
6. Experience with Web Servers/Application deployment
7. Experience interacting with Web APIs using various protocols and framework (E.g. REST)
8. Experience with RDBMS or NoSQL databases from application programmer’s perspective. Understanding of how to interface with these databases, analyze & write complex queries/procedures.
9. Understanding of containerization and associated technologies like Kubernetes/OpenShift.

Good to Have

1. Experience managing PAM services including CyberArk and Hashicorp Vault would be a big plus.
2. Hands on experience with IGA including SailPoint & Omada Identity
3. Programming experience in Python, Core Java, Perl, .NET languages
4. SRE/DevSecOps Foundation Certification
5. CyberArk Sentry, Hashicorp Vault Associate
6. Cloud Certifications including AWS, GCP and Azure
7. Security Certifications like CISM, CISSP, CISA, CompTIA Security+ / CASP+
8. Operating System certifications like MCSA (Windows Server), RHCSA, RHCE, CompTIA Server+