DevSecOps Platform Engineer; Secrets Management-Cyberark/Hashicorp
Job in
Chandler, Maricopa County, Arizona, 85249, USA
Listed on 2026-06-17
Listing for:
The Matlen Silver Group, Inc.
Full Time
position Listed on 2026-06-17
Job specializations:
-
IT/Tech
Cybersecurity, Systems Engineer, Cloud Computing: Infrastructure & Operations
Job Description & How to Apply Below
Location:
Chandler, United States
Salary: $85.00 to $89.00 per hour
Key Responsibilities- Own the operating model for dual vaulting platforms, clearly delineating:
- Cyber Ark human privileged access (PAM)
- Vault application, dynamic, and non-human secrets
- Support enterprise initiatives for centralized secrets management across cloud and on-prem platforms.
- Eliminate manual operations by engineering automated patching pipelines, automated version upgrades, and lifecycle workflows (certificate rotation, secret rotation, platform hardening).
- Build reusable frameworks for safe maintenance windows, automated rollback, and continuous compliance validation.
- Standardize Day-2 operational patterns, runbooks, and platform engineering playbooks.
- Design and implement enterprise-grade upgrade strategies, including rolling upgrades (HA clusters), blue/green or parallel cluster deployments, and controlled failover patterns.
- Introduce automated validation such as pre-checks for dependency/version compatibility and post-checks for cluster health and secret access integrity.
- Ensure Vault and Cyber Ark platforms remain aligned to security patch baselines and enterprise upgrade cadences.
- Build and maintain modular IaC for secrets platform deployment and lifecycle (Cyber Ark components, Vault clusters).
- Develop CI/CD pipelines to build, validate, and promote platform changes, securely inject and manage secrets, and integrate secrets management into CI/CD systems.
- Define operational health KPIs for both platforms (Vault and Cyber Ark).
- Implement automated health checks and drift detection, event-driven remediation, and end-to-end alerting integrated into enterprise monitoring tools.
- Experience building Vault as a Service / PAM as a platform capabilities.
- Knowledge of dynamic secrets, short-lived credentials, JIT access models, token-based or OIDC-based authentication patterns.
- Experience with Kubernetes, container platforms, and multi-cloud environments (AWS, Azure).
- Familiarity with Cyber Ark automation tooling (e.g., Ansible-based approaches).
- High Availability, Resilience, and DR: engineer resilient, high-uptime architectures, multi-zone/multi-region deployment patterns, disaster recovery and failover automation, failure injection, controlled DR drills, and recovery validation pipelines.
- Security, Governance, and Compliance: implement strong governance patterns, segregation of duties, approval workflows, least-privilege enforcement, audit requirements, security best practices, IaC methodology, Git Ops workflows, API automation, and integration with Vault, Cyber Ark, and cloud secret managers.
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×