Position: Sr. AgileSec Analytics Platform Engineer Lead
Location: Pittsburgh, PA (Hybrid)
Employment mode: Contract position
- The Senior AgileSec Analytics Platform Engineer leads the end-to-end onboarding and operationalization effort.
- This candidate brings deep platform experience, drives architectural decisions, and sets the standard for documentation and process repeatability across the engagement.
Responsibilities
- Lead platform architecture review and integration design for AgileSec Analytics within the client environment.
- Establish repeatable deployment and configuration management frameworks, including automated upgrade and patching pipelines.
- Own the full documentation lifecycle: from initial runbook creation through peer review, version control, and handoff to the operations team.
- Serve as the primary technical point of contact across security, infrastructure, and operations stakeholders.
- Mentor mid-level team members and ensure knowledge transfer throughout the engagement.
- Define monitoring and alerting standards for platform health and user activity within AgileSec Analytics.
- Lead Cipher Insights network component configuration, where applicable.
Added Required Skills
- Integration & Connectivity
- 2 4 years of experience with API integrations, webhook/callback patterns, and secure credential handling.
- Ability to troubleshoot connectivity issues using logs, network tools, and platform diagnostics.
- Infrastructure
- Proficient Linux command-line user with scripting experience (Bash or Python); Kubernetes exposure is a strong plus.
- Working knowledge of configuration management concepts; experience with at least one deployment automation tool is beneficial.
- OpenSearch & Analytics Stack
- Working knowledge of OpenSearch or a comparable search/analytics stack (Elasticsearch, Splunk, etc.): indexing basics, dashboard creation, and query writing.
- Experience setting up or supporting analytics/observability platforms in an enterprise context.
- Documentation & Communication
- Demonstrated ability to write clear, structured procedural documentation for technical and non-technical audiences.
- Comfortable communicating across security, infrastructure, and operations teams; proactive in flagging blockers.
Preferred Qualifications
- Direct exposure to the AgileSec Analytics platform or the Keyfactor product suite.
- Familiarity with Cipher Insights network discovery concepts.
- Experience in environments with cryptographic or compliance requirements (awareness-level, not practitioner-level).
More Required Skills
- Integration & Connectivity 5+ years of hands-on experience with API-based integrations, REST/webhook patterns, and secure credential management (secrets vaults, token rotation).
- Demonstrated ability to diagnose and resolve complex system-to-system connectivity issues in production environments.
- Infrastructure Strong Linux OS administration and/or Kubernetes cluster management experience, including scripting (Bash, Python, or similar) and error handling at scale.
- Familiarity with deployment automation tooling (Ansible, Helm, Terraform, or equivalent) for analytics platform lifecycle management.
- OpenSearch & Analytics Stack Advanced working knowledge of OpenSearch: index management, custom queries, dashboard development, and cluster performance tuning.
- Experience operating or standing up comparable analytics/observability platforms (e.g., Elasticsearch, Splunk, Datadog, Grafana stack).
- Documentation & Communication Track record of producing enterprise-grade operational runbooks and technical documentation consumed by both engineers and business users.
- Excellent verbal and written communication; comfortable leading cross-functional workshops and stakeholder reviews.
- Preferred Qualifications
- Direct experience with the AgileSec Analytics platform (any current offering). Familiarity with Cipher Insights and its network discovery component. Background working within cybersecurity or compliance-driven environments. Experience supporting or onboarding Keyfactor products is a plus.
The skills we believe are most critical for a successful onboarding and for creating repeatable procedural documentation include:
- System-to-system integration experience: API-based integrations, webhook/callback patterns, secure credential handling, and connectivity troubleshooting
- Linux OS or Kubernetes experience; command-line, scripting, or error handling
- Working knowledge of OpenSearch (indexing, queries, dashboards), which underpins the AgileSec platform today
- Experience standing up analytics or observability platforms and creating repeatable processes
- Deliver operational runbooks covering both system administrator procedures (deployments, upgrades, patching, monitoring, alerting) and application user procedures (dashboard creation, user onboarding, recommended system configurations, etc.)
- Familiarity with deployment automation and platform lifecycle management, including repeatable deployments, upgrades, and configuration management for analytics platforms
- Ability to translate technical configuration into clear procedural documentation
- Strong communication skills are to coordinate across security, infrastructure, and operations teams Direct AgileSec platform experience is a plus for all the current offerings on the platform, including the Cipher Insights which does have a networking component to it.
- That said, given the platform s reliance on OpenSearch, a candidate with strong OpenSearch or similar analytics-stack experience would also be very valuable.
What this role is: We are looking for a hands-on operator who owns certificate lifecycle, PKI, and machine identity at scale and has been accountable for it in production environments.
If you ve ever had an application go down because of an expired certificate and made sure it never happened again, you ll feel right at home here. What you ll do
- Own end-to-end certificate lifecycle management (issue, renew, revoke, rotate) across enterprise environments
- Build and maintain automated certificate workflows integrated into CI/CD pipelines
- Operate and scale PKI environments (internal CAs, intermediate chains, trust stores)
- Integrate Keyfactor with:
- CI/CD tools (GitHub Actions, Jenkins, Azure DevOps)
- Cloud platforms (AWS, Azure)
- Infrastructure (F5, NGINX, IIS, Kubernetes)
- Troubleshoot and resolve:
- TLS/SSL handshake failures
- Broken trust chains
- Certificate expiration incidents
- Partner directly with engineering teams in an agile model to deliver security as code What you must have (non-negotiable)
- Proven experience managing PKI in production environments (not lab/theory)
- Hands-on ownership of certificate lifecycle automation
- Strong understanding of:
- TLS handshake and encryption fundamentals
- Certificate chains (root/intermediate)
- CRL vs OCSP
- Experience with Keyfactor or comparable PKI platforms
- Scripting experience (PowerShell or Python) used in real-world automation
- Experience supporting production incidents related to certificates or encryption
What will set you apart
- Experience integrating certificate management into CI/CD pipelines
- Exposure to cloud-native certificate services (AWS ACM, Azure Key Vault)
- Experience in containerized environments (Kubernetes, ingress controllers)
- Ability to translate security requirements into automated, scalable solutions
How we evaluate candidates You will be asked to walk through real scenarios, including:
- A certificate-related outage you handled end-to-end
- How you automated certificate provisioning and renewal
- How trust chains function and fail in production environments
We are not looking for theoretical answers we re looking for operators who have done the work.
What success looks like
- Zero certificate-related outages
- Fully automated certificate lifecycle across environments
- Clear visibility and control over machine identities
- Engineering teams enabled not blocked by security
Never miss an opportunity! Create an alert based on the job you applied for.
