Job Title: Senior IAM Security Engineer
Location: Brussels, Belgium
Duration: ASAP - 31/06/2027
Remote Work: Hybrid mode 2 - 3 days onsite per week
Languages: English
Job Description - Roles and Responsibilities
Description:
IAM Security Engineer with strong expertise in securing and managing enterprise environments. The ideal candidate will have hands-on experience with Hashi Corp Vault, Terraform, RHEL, and Ansible, and will contribute to the deployment, hardening, and automation of security solutions. This role requires a proactive individual who can troubleshoot complex issues, integrate platforms, and develop automation workflows.
Key Responsibilities
* Develop, test and perform OS and software upgrades, prepare for and perform business continuity activities and address vulnerabilities.
* Interact with Vendor and Client internal teams to ensure availability of, maintenance, enhancements to, and integrated with all the Client ecosystems (MS-AD, monitoring, backup, SIEM, …) of SSMS /Vault infrastructure
* Investigate and resolve issues that impacts or could potentially impact the availability of SSMS and its Vault infrastructure.
* Work with team to expand services and visibility by continuing to review offering, speaking with stakeholders and assisting new application teams to adopt and automate.
* Assist application team(s) with onboarding digital secrets to the Secret Management including reviewing environment for authentication method, secrets engine to onboard secrets, assist in developing compliance reporting, policy review/enforcement, end to end lifecycle management activities.
* Work with the vendors’ delivery teams, maintaining a detailed design, request the pre-requisites and deploy the selected solutions/features in a highly available, resilient and secure configuration. Ensure the solution is integrated with all the Client ecosystems (MS-AD, monitoring, backup, SIEM, …).
* Enhance and provide regular reporting and accountability on key metrics and agreed upon deliverables and ensure that the team is performing according to them.
* Maintain a customer guide that can be reused by the application team(s) for future onboarding actions.
* Maintain a runbook for the Secret Management service infrastructure and work with the administrators to maintain and enhance the administrators guide.
* On-call on a rotational basis.
Required Skills (Must-Have)
- HashiCorp Vault Enterprise administration (deployment in HA, troubleshooting, monitoring, hardening, integrations).
- Terraform hands-on experience (module development).
- Red Hat Linux experience (troubleshooting, monitoring, hardening).
- Ansible experience (developing roles, playbooks, AWX or Ansible Tower).
Preferred Skills (Differential)
- Go development (especially for Vault plugin development).
- Jenkins (pipeline development and automation).
- Splunk (query creation, dashboards, and alerting).
- ELK Stack (integration, queries, alerts, dashboards).
- SELinux (policy development and troubleshooting).
Certifications (Nice to Have)
HashiCorp Certified: Vault Associate
Hashicorp Vault Operations Progressional
Terraform Associate Certification
Soft Skills
- Strong problem-solving and analytical thinking.
- Excellent communication and documentation skills.
- Ability to collaborate effectively in cross-functional teams.
- Adaptability to rapidly changing environments and technologies.
- Attention to detail and commitment to security best practices.
Qualifications
3+ years of experience in security management and automation.
3+ years of experience with Hashicorp Vault Enterprise