Address- Estimated start date: Monday, 01 July 2024
- Initial contract duration: 12 Months
- Extension term: 12 months (potentially twice)
- Working arrangements: Hybrid – ACT, SA, or VIC
- Security clearance: Must have Negative Vetting Level 1
The Technical Engineering Expert will lead, manage, and provide engineering services and support to deliver the technical implementation of a suite of priority cyber security enhancements to support secure credential management. This role involves engagement planning, technical design, implementation, and onboarding of development and engineering teams. The candidate will transition post-project to manage the products in BAU (Business As Usual).
Duties & Responsibilities:
- Lead designing feature enhancements, implementation, and maintenance of a secure secrets management infrastructure using Hashicorp Vault.
- Perform a technical leadership role, potentially as a Product Owner in a multidisciplinary team.
- Provide broad technical support, design, and engineering services for project build, test, and solution deployments.
- Define and enforce access control policies for secrets.
- Liaise on technical discussions with infrastructure, cyber security, and development teams to address their requirements for a secure credential management solution.
- Drive innovation, continuous improvement, and manage and lead change in securing development pipelines.
- Collaborate with a broad range of internal and external stakeholders to achieve project outcomes.
- Oversee and prepare technical documentation. Prepare reports to support senior executives through decision making.
- Identify and implement new tools and features to strengthen the capability, efficiency, and security of the secrets management system.
- Mature the usage and practices around HashiCorp Vault within the agency.
- Hashicorp Vault (Enterprise version).
- Linux (RHEL).
- Ansible Automation Platform (YAML).
- Gitlab (CI/CD pipelines).
- OpenStack/VMware (Networking Security Groups).
- LDAP
- JWT.
- Kubernetes.
- OIDC.
- IBM Security Verify Access (ISVA).
- RSA Authentication Manager.
- Terraform, packer, ansible, Linux nftables, filebeat & metricbeat.
- Demonstrated engineering experience leading deployment, configuration, and maintenance of Hashicorp Vault (Enterprise version) in a government setting or a large enterprise environment.
- Demonstrated experience providing technical leadership and working with technical stakeholders to achieve project success.
- Demonstrated experience working with technologies such as Red Hat Enterprise Linux (RHEL), infrastructure as code using Ansible Automation Platform and OpenStack and VMware, and Gitlab CI/CD pipelines.
- Demonstrated experience working with different Hashicorp Vault secrets engines and authentication methods required in a government setting or a large enterprise environment.
- Strong knowledge of secrets management concepts, cryptographic principles, security best practices and standards including Federal Government information security policy (i.e. Information Security Manual, Protective Security Policy Framework) and the ACSC's Cyber Security principles and guidelines.
To apply, please submit your resume and cover letter to *****@acmrecruitment.com.au - Applicants must hold Negative Vetting Level 1 Security Clearance and be an Australian Citizen.
Applications close on: Tuesday, 28 May 2024.
