Sr. Systems Enginnner
The person in this position must have extensive knowledge of certificate management strategies across environments. We need this person to bring that experience and help us build our environment using the best practices other companies have developed. We already have a system what would be delivered by engineers with less experience. We need that additional experience to take DaVita to the next level and plan for the future. "A Senior Identity Encryption Engineer who brings deep, specialized experience in PKI and secrets management. This engineer will be tasked with transforming our current platforms into a seamless, automated service. 1. Self-Service Portal: Develop and maintain a centralized, user-friendly portal for developers and infrastructure engineers to seamlessly request and provision certificates. 2. API-Driven Zero-Touch Automation: Expose safe, governed APIs and plugins so that DevOps teams can integrate their own CI/CD automation jobs directly with our secrets platforms (Keyfactor, HashiVault, Azure Key Vault). 3. Platform Consolidation & Optimization: Maximize the ROI of existing platforms by standardizing workflows and ensuring all enterprise applications are utilizing the correct enterprise tools rather than siloed, one-off solutions.
The Systems Engineer will be a primary point of contact to the design, development and delivery of concurrent Directory Services requests or projects.
Lead the optimization and enhancement of DaVita s cryptographic platforms, including systems integration and automation, as well as preparing for foreseeable future changes in the industry.
Contribute to design and implementation of risk mitigation and system hardening controls such as delegation management, monitoring, patching, and optimization.
Escalation point for admins on the Directory Services team. Supporting admins on complex issue resolution and helping to automate routine tasks performed by the Directory Services admins and other teams.
Responsible for helping to design and maintain engineering roadmaps and priorities for the Directory Services team.
Manage timelines and deliverables for engineering priorities as defined in the engineering roadmaps. Support the management of pilot or POC initiatives as approved by ARB.
Active participation and contribution in Engineering forums such as subcommittees, engineering meetings, new technology meetings, and steering committees.
Other engineering duties as assigned.
Skills:
7-10 years of experience managing certificate and other cryptographic platforms.
Experience with Keyfactor certificate platforms is highly preferred.
5+ years experience in an engineering capacity in the Directory Services/DevOps space developing and automating workflows for secrets management.
PowerShell experience is required.
Experience with HSM platform deployment, management, and troubleshooting.
Expert knowledge of certificate and PKI concepts along with deployment architecture design and management.
Experience with CyberArk and HashiVault preferred.
Demonstrated experience with cloud-based infrastructure such as Google Cloud Platform, Azure (especially azure KeyVault), or AWS required
Knowledge of API integrations. Demonstrated ability to develop integrations between applications leveraging existing APIs is preferred.
Proven experience deploying infrastructure as code; developing and supporting CI\CD pipelines.
5+ years experience working with cross functional technical and project teams on the development and delivery of IT solutions.
Understanding of incident, request, problem, and change management.
Ability to communicate effectively between Business Owners, Project Managers (PMs) and Operations Teams.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: cxbcsi
- Position Id: Job44716
- Posted 1 hour ago