Senior Keyfactor AgileSec Analytics Platform Engineer lead - Hybrid

About The Position

Requirements

• 2–4 years of experience with API integrations, webhook/callback patterns, and secure credential handling.
• Ability to troubleshoot connectivity issues using logs, network tools, and platform diagnostics.
• Proficient Linux command-line user with scripting experience (Bash or Python); Kubernetes exposure is a strong plus.
• Working knowledge of configuration management concepts; experience with at least one deployment automation tool is beneficial.
• Working knowledge of OpenSearch or a comparable search/analytics stack (Elasticsearch, Splunk, etc.): indexing basics, dashboard creation, and query writing.
• Experience setting up or supporting analytics/observability platforms in an enterprise context.
• Demonstrated ability to write clear, structured procedural documentation for technical and non-technical audiences.
• Comfortable communicating across security, infrastructure, and operations teams; proactive in flagging blockers.
• Key concepts - system integrator, Linux and Opensearch back end, dashboarding, scripting.
• 5+ years of hands-on experience with API-based integrations, REST/webhook patterns, and secure credential management (secrets vaults, token rotation).
• Demonstrated ability to diagnose and resolve complex system-to-system connectivity issues in production environments.
• Strong Linux OS administration and/or Kubernetes cluster management experience, including scripting (Bash, Python, or similar) and error handling at scale.
• Familiarity with deployment automation tooling (Ansible, Helm, Terraform, or equivalent) for analytics platform lifecycle management.
• Advanced working knowledge of OpenSearch: index management, custom queries, dashboard development, and cluster performance tuning.
• Experience operating or standing up comparable analytics/observability platforms (e.g., Elasticsearch, Splunk, Datadog, Grafana stack).
• Track record of producing enterprise-grade operational runbooks and technical documentation consumed by both engineers and business users.
• Excellent verbal and written communication; comfortable leading cross-functional workshops and stakeholder reviews.
• System-to-system integration experience: API-based integrations, webhook/callback patterns, secure credential handling, and connectivity troubleshooting.
• Linux OS or Kubernetes experience; command-line, scripting, or error handling.
• Working knowledge of OpenSearch (indexing, queries, dashboards), which underpins the AgileSec platform today.
• Experience standing up analytics or observability platforms and creating repeatable processes.
• Familiarity with deployment automation and platform lifecycle management, including repeatable deployments, upgrades, and configuration management for analytics platforms.
• Ability to translate technical configuration into clear procedural documentation.
• Strong communication skills are to coordinate across security, infrastructure, and operations teams.
• Proven experience managing PKI in production environments (not lab/theory).
• Hands-on ownership of certificate lifecycle automation.
• Strong understanding of TLS handshake and encryption fundamentals.
• Strong understanding of Certificate chains (root/intermediate).
• Strong understanding of CRL vs OCSP.
• Experience with Keyfactor or comparable PKI platforms.
• Scripting experience (PowerShell or Python) used in real-world automation.
• Experience supporting production incidents related to certificates or encryption.

Nice To Haves

• Kubernetes exposure is a strong plus.
• Experience with at least one deployment automation tool is beneficial.
• Direct exposure to the AgileSec Analytics platform or Keyfactor product suite.
• Familiarity with Cipher Insights network discovery concepts.
• Experience in environments with cryptographic or compliance requirements (awareness-level, not practitioner-level).
• Direct experience with the AgileSec Analytics platform (any current offering).
• Familiarity with Cipher Insights and its network discovery component.
• Background working within cybersecurity or compliance-driven environments.
• Experience supporting or onboarding Keyfactor products is a plus.
• Experience integrating certificate management into CI/CD pipelines.
• Exposure to cloud-native certificate services (AWS ACM, Azure Key Vault).
• Experience in containerized environments (Kubernetes, ingress controllers).
• Ability to translate security requirements into automated, scalable solutions.

Responsibilities

• Lead platform architecture review and integration design for AgileSec Analytics within the client environment.
• Establish repeatable deployment and configuration management frameworks, including automated upgrade and patching pipelines.
• Own the full documentation lifecycle: from initial runbook creation through peer review, version control, and hand-off to the operations team.
• Serve as the primary technical point of contact across security, infrastructure, and operations stakeholders.
• Mentor mid-level team members and ensure knowledge transfer throughout the engagement.
• Define monitoring and alerting standards for platform health and user activity within AgileSec Analytics.
• Lead Cipher Insights network component configuration where applicable.
• Execute API and webhook integrations following approved design patterns, ensuring secure credential handling and stable connectivity.
• Administer Linux and/or Kubernetes environments for AgileSec platform services, applying configuration changes and managing routine upgrades.
• Build and maintain OpenSearch dashboards and queries aligned with reporting requirements defined by the crypto team.
• Author and iterate on operational runbooks for both system administrator and application-user audiences.
• Participate in cross-functional planning sessions and translate technical configuration steps into accessible documentation.
• Support monitoring and alerting configuration, escalating anomalies to the senior lead or client team.
• Own end-to-end certificate lifecycle management (issue, renew, revoke, rotate) across enterprise environments.
• Build and maintain automated certificate workflows integrated into CI/CD pipelines.
• Operate and scale PKI environments (internal CAs, intermediate chains, trust stores).
• Integrate Keyfactor with CI/CD tools (GitHub Actions, Jenkins, Azure DevOps), Cloud platforms (AWS, Azure), and Infrastructure (F5, NGINX, IIS, Kubernetes).
• Troubleshoot and resolve TLS/SSL handshake failures, broken trust chains, and certificate expiration incidents.
• Partner directly with engineering teams in an agile model to deliver security as code.