L3 SME Delinea & HashiCorp

Detailed Description From Employer:

Role Title: L3 Subject Matter Expert Delinea & HashiCorp

Job Level: Senior / Specialist

Experience: 7 12+ years (minimum 3 5 years handson with Delinea + 3 5 years with HashiCorp)

Role Summary

We are seeking a highly skilled L3 SME with deep expertise in Delinea Privileged Access Management (PAM) solutions and the HashiCorp product suite (Terraform, Vault, Consul, Nomad). The candidate will serve as the highest technical escalation point, drive solution architecture, perform complex deployments, troubleshoot advanced issues, and guide customers on best practices for secure, scalable PAM and cloudinfrastructure automation.

Key Responsibilities

1. L3 Technical Expertise

Provide endtoend ownership of complex incidents, root cause analysis (RCA), and escalations related to Delinea & HashiCorp platforms.

Troubleshoot and resolve advanced configuration, integration, performance, and security issues.

Develop and maintain L3 knowledge articles, runbooks, and automation scripts.

2. Delinea (Thycotic) Responsibilities

Deep expertise in the following Delinea products:

Secret Server (SS) architecture, clustering, vault hardening, distributed engines.

Privilege Manager endpoint privilege elevation policies.

Connection Manager / Remote Access Service.

Delinea Cloud Suite integration and federation.

Key tasks:

Perform installation, upgrades, patching, and environment health assessments.

Configure secret rotation, discovery, workflow approvals, and password management.

Integrate Secret Server with AD, LDAP, Azure AD, SIEM, CyberArk, SailPoint, service accounts, cloud accounts.

Perform custom scripting (PowerShell, REST APIs) to extend and automate Secret Server workflows.

3. HashiCorp Responsibilities

Handson experience with at least Vault + Terraform; Consul/Nomad is a strong plus.

HashiCorp Vault

Deploy and manage Vault clusters (OSS & Enterprise).

Configure PKI engine, KV engine, Transit, AWS/Google Cloud Platform/Azure auth methods, and secrets lifecycle.

Implement encryption-as-a-service, token management, DR, HA, replication.

Terraform

Write, optimize, and maintain Terraform IaC modules.

Integrate Terraform with major cloud providers (AWS/Azure/Google Cloud Platform).

Manage Terraform Cloud/Enterprise, workspaces, policies, Sentinel, state management.

HashiCorp Consultant / Nomad (preferred)

Service discovery, service mesh, KV operations.

Job scheduling and orchestration via Nomad.

4. Architecture & Design

Design secure, scalable PAM and IaC architectures for hybrid and multicloud environments.

Lead design workshops, technical discovery, and architectural reviews.

Recommend best practices, governance models, and operational frameworks.

5. Automation, Scripting & DevOps

Automate PAM and HashiCorp workflows using PowerShell, Python, Bash, Ansible, or REST APIs.

Build CI/CD pipeline integrations for Vault, Terraform, and Secret Server.

Perform API-based integrations with custom enterprise applications.

6. Security, Compliance & Governance

Ensure solutions meet enterprise requirements:

Zero Trust

Identity & access governance

Secrets governance

Audit & compliance frameworks (ISO, SOC2, NIST, PCI-DSS)

Support audits by delivering logs, evidence, and architectural insights.

7. Stakeholder & Customer Engagement

Act as the technical advisor for customers and internal teams.

Provide training, enablement, solution walkthroughs, and L2 team mentoring.

Collaborate closely with engineering, product, cybersecurity, and