In this role, you will build and maintain GitHub Actions workflows for self-service provisioning of infrastructure, secrets, and IAM roles using Terraform. You will develop reusable Terraform modules that encapsulate compliant patterns for deploying GCP, Azure, and on-prem infrastructure such as VMs, networks, and K8s clusters. Additionally, you will integrate with HashiCorp Vault to securely inject secrets into pipelines and support runtime retrieval for VMs and services. You will support the GitHub repository onboarding process by automating bindings between repositories, identity pools, and service accounts, and enable secure OIDC-based pipeline authorization, including GCP Workload Identity Federation and Azure Federated Credentials. Your responsibilities will also include driving automation for certificate-based authentication for on-prem VMs accessing Vault and other internal services, collaborating with platform, IAM, and security teams to implement compliant patterns for secrets, identity, and access governance, and designing self-service onboarding workflows for developers and application teams across various environments. You will contribute to internal documentation and Confluence living strategies to ensure transparency and onboarding clarity.