IAM Security Engineer

Job Title: Senior IAM Security Engineer

Location: Brussels, Belgium

Duration: ASAP - 31/06/2027

Remote Work: Hybrid mode 2 - 3 days onsite per week

Languages: English

Job Description - Roles and Responsibilities

Description:

IAM Security Engineer with strong expertise in securing and managing enterprise environments. The ideal candidate will have hands-on experience with Hashi Corp Vault, Terraform, RHEL, and Ansible, and will contribute to the deployment, hardening, and automation of security solutions. This role requires a proactive individual who can troubleshoot complex issues, integrate platforms, and develop automation workflows.

Key Responsibilities

• Develop, test and perform OS and software upgrades, prepare for and perform business continuity activities and address vulnerabilities.
• Interact with Vendor and Client internal teams to ensure availability of, maintenance, enhancements to, and integrated with all the Client ecosystems (MS-AD, monitoring, backup, SIEM, …) of SSMS /Vault infrastructure
• Investigate and resolve issues that impacts or could potentially impact the availability of SSMS and its Vault infrastructure.
• Work with team to expand services and visibility by continuing to review offering, speaking with stakeholders and assisting new application teams to adopt and automate.
• Assist application team(s) with onboarding digital secrets to the Secret Management including reviewing environment for authentication method, secrets engine to onboard secrets, assist in developing compliance reporting, policy review/enforcement, end to end lifecycle management activities.
• Work with the vendors’ delivery teams, maintaining a detailed design, request the pre-requisites and deploy the selected solutions/features in a highly available, resilient and secure configuration. Ensure the solution is integrated with all the Client ecosystems (MS-AD, monitoring, backup, SIEM, …).
• Enhance and provide regular reporting and accountability on key metrics and agreed upon deliverables and ensure that the team is performing according to them.
• Maintain a customer guide that can be reused by the application team(s) for future onboarding actions.
• Maintain a runbook for the Secret Management service infrastructure and work with the administrators to maintain and enhance the administrators guide.
• On-call on a rotational basis.

Required Skills (Must-Have)

- HashiCorp Vault Enterprise administration (deployment in HA, troubleshooting, monitoring, hardening, integrations).

- Terraform hands-on experience (module development).

- Red Hat Linux experience (troubleshooting, monitoring, hardening).

- Ansible experience (developing roles, playbooks, AWX or Ansible Tower).

Preferred Skills (Differential)

- Go development (especially for Vault plugin development).

- Jenkins (pipeline development and automation).

- Splunk (query creation, dashboards, and alerting).

- ELK Stack (integration, queries, alerts, dashboards).

- SELinux (policy development and troubleshooting).

Certifications (Nice to Have)

HashiCorp Certified: Vault Associate

Hashicorp Vault Operations Progressional

Terraform Associate Certification

Soft Skills

- Strong problem-solving and analytical thinking.

- Excellent communication and documentation skills.

- Ability to collaborate effectively in cross-functional teams.

- Adaptability to rapidly changing environments and technologies.

- Attention to detail and commitment to security best practices.

Qualifications

3+ years of experience in security management and automation.

3+ years of experience with Hashicorp Vault Enterprise