Perm Position: Senior Linux, Automation & Identity Engineer
Asegúrese de que toda la información de su solicitud está actualizada y en orden antes de inscribirse en esta oportunidad.
Location: Remote (EU)
Duration: 6 months +
Responsible for building and delivering the Linux automation layer, identity federation with Active Directory, secrets management, and certificate lifecycle automation. Collaborates with the architecture lead on identity design and with platform engineers on IaC integration.
Key Responsibilities
Own Linux automation, configuration management, and infrastructure-as-code delivery
Harden Linux and infrastructure platforms to meet security and compliance requirements
Deploy and configure SSO/identity federation with existing Active Directory
Integrate Linux infrastructure with the existing Windows / Active Directory environment (host enrolment, authentication, authorization, and access control)
Design and deliver secrets management for dynamic credentials and PKI
Design and deliver automated key and credential rotation for secrets, TLS/SSL certificates, and service credentials
Extend JIT access models to on‑prem infrastructure
Automate Linux OS patching and coordinate with existing Windows/VM patching tooling
Automate certificate lifecycle management and integrate with infrastructure and security platforms
Collaborate with the architecture lead on identity design and with platform engineers on IaC integration
Required Skills
Strong Linux administration skills (preferably RHEL-based) including system administration, networking, troubleshooting, and hardening.
Hands‑on experience with Ansible, Bash, or Python to automate infrastructure, configuration, and operational tasks.
Practical experience using OpenTofu / Terraform to provision and manage infrastructure in a repeatable and maintainable way.
Experience deploying and configuring an SSO/identity broker federated with existing Active Directory, including group‑to‑role mapping. Ideally experience with Kerberos‑based desktop SSO.
Working knowledge of Active Directory, domain controllers, DNS integration, group policies, and identity dependencies for applications and infrastructure.
Hands‑on experience integrating Linux hosts and services with Active Directory (e.G. SSSD / realmd / winbind for host enrolment, Kerberos‑based authentication, AD‑backed sudo and access control, cross‑platform file/share access)
Experience designing and delivering secret management for dynamic credentials and PKI, including automated rotation policies.
Experience automating certificates and credential lifecycle management (request, renewal, rotation, deployment) and integrating it with infrastructure and security platforms.
Working knowledge of virtualization platforms (e.G. VMware vSphere, Hyper‑V, KVM-based platforms such as Proxmox, OpenShift Virtualization).
Basic exposure to container platforms (e.G. OpenShift).
Experience with Ansible automation platforms (e.G. AWX) for runbook automation.
Experience with golden image building tools (e.G. Packer). xhfqzwm
Experience with security compliance scanning (e.G. CIS hardening baselines).
#J-18808-Ljbffr