Principal, HashiCorp Vault Expert

Location: Westlake, TX, Durham, NC, Salt Lake City, UT, Merrimack, NH, Covington, KY, Smithfield, RI

Time Type: Full time

Job Description

Job Description:

Note: Fidelity will not provide immigration sponsorship for this position

In this role on the Privileged Access Management team, your primary responsibility will be to own and operate Fidelity’s HashiCorp Vault application. This is an enterprise-class installation providing secrets management services to over 5,000 business unit applications. You will design, develop, and support new and improved access management capabilities that meet Fidelity’s stringent cybersecurity policies and requirements. You will administer critical production environments including implementation of monitoring, upgrades, performance & capacity improvements, certifying disaster readiness, improving CI/CD with process automation, and analyzing key metrics and trends. We operate in an Agile framework where you will have an opportunity to participate in sprint planning to provide prioritization, and realistic and achievable estimates. You will also contribute towards continuous improvement efforts aimed at increasing the efficiency and velocity of the team.

 The Expertise You Have and The Skills You Bring

• Bachelor’s degree in Computer Science, Computer Engineering, Computer Systems Networking, Information Systems/Science, or a related discipline

• 5+ years of experience and demonstrated expertise with administration and operation of the HashiCorp Vault application is a requirement for this role

• You have systems and application management experience on Linux/UNIX platforms

• You have experience with cloud architecture and have built applications in, or migrated applications to, Amazon Web Services AWS or Microsoft Azure

• You have experience with networking, firewalls, and load balancers

• You have experience building automated pipelines and deploying with CI/CD technologies such as Jenkins, Git, Ansible, Chef, Artifactory, AWS Cloud Formation Templates, Terraform, EC2, Lambda, Docker/Kubernetes, and KMS

• You develop advanced, customized workflows and automated processes for/with vendor applications

• You have strong scripting & automation skills, specifically in Python and Ansible

• You have excellent written and verbal communication skills with the ability to present to both technical and business audiences

• You have demonstrated experience in leading small technical teams

• You have the ability to independently perform systems design & architecture work to satisfy technical objectives and meet business requirements

The Team

In this position you will join Fidelity’s Enterprise Cybersecurity business unit as a member of the Privileged Access Management team. We are a dynamic, high visibility team that provides a variety of access management services to all of Fidelity’s business units. The Privileged Access Management team is comprised of engineers located in the US, Ireland, and India. We leverage an Agile operating model to install, configure, operate, and maintain a set of in-house and vendor applications providing a multitude of access management capabilities to the firm. We are a DevOps team that engages in systems engineering, software engineering, and production services support.

Certifications:

Category:

Most roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles. Some roles may have unique onsite requirements. Please consult with your recruiter for the specific expectations for this position.

Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.