We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
The Sherwin-Williams Company jobs

Secrets Engineer

The Sherwin-Williams Company
$106,355.60 - $136,485.43 Annually
United States, Ohio, Cleveland
Feb 06, 2026

The Secrets Management Senior Engineer is a key member within the Identity and Access Management Program. The Secrets Management Senior Engineer is a subject matter expert who, through independent project engagements and collaboration with business and technology partners, as well as third party vendors, designs and engineers the PAM and PKI platforms for the enterprise.

This role is responsible for engineering and ensuring that security is "built into" the organization's application and PAM and PKI platforms, including third party vendor connectivity and interactions and running the PAM and PKI services and infrastructure. The Secrets Senior Engineer maintains current knowledge of new products, industry trends and recommends enhancements and purchases that allow Sherwin-Williams to maintain healthy and functional applications and protect its employees' identities. This role provides technical consulting to management, business users, and technical associates to ensure that applications and platforms are secure. This is an individual contributor position.

This is a remote position.

Essential Functions

Strategy & Planning



  • Work with the business units to identify business requirements for requested projects.
  • Identify the technical requirements of projects.
  • Plan and organize tasks, report on project progress, coordinate with additional development teams.
  • Review and submit technical and security improvement recommendations.


Acquisition & Deployment



  • Deploy and configure privileged access management solutions based on industry best practices.
  • Leverage capabilities of vendor solutions.
  • Develop solutions based on secure design and/or coding practices.


Operational Management



  • Execute daily maintenance functions on the PAM and PKI platforms. Creating and maintaining Accounts, secrets SAFEs and Vaults, and digital certificate creation, renewal, and revocation.
  • Follow the established change control processes, maintain and modify Privileged Access Management (PAM) Platforms (CyberArk and HashiCorp) applications
  • Follow the established change control processes, maintain and modify PKI Platforms (KeyFactor and Digicert) applications
  • Coordinate changes with members from IAM and external teams including Infrastructure Engineers, DBAs and Enterprise Risk & Resiliency (ER&R).
  • Provide on call support for production and non-production issues.
  • Analyze performance of PAM and PKI applications and take action to correct deficiencies based on consultation with clients and approval of manager.
  • Act as Subject Matter Expert in the discovery and investigation of critical security vulnerabilities', as required.
  • Maintain good vendor relationships for maintenance, updates, and problem resolution assistance.



Incidental Functions



  • Stay informed on new technologies, including tools, components, and frameworks.
  • Train and share knowledge with IAM team.
  • Mentor and coach co-ops and interns.
  • Project and task management and reporting as necessary.
  • Make presentations to management, clients, and peer groups as requested.
  • Schedule project and communication meetings with clients.
  • Assist with other projects as may be required to contribute to efficiency and effectiveness of the work.



This position is not eligible for sponsorship for work authorization now or in the future, including conversion to H1-B visa.

Job duties include contact with other employees and access confidential and proprietary information and/or other items of value, and such access may be supervised or unsupervised. The Company therefore has determined that a review of criminal history is necessary to protect the business and its operations and reputation and is necessary to protect the safety of the Company's staff, employees, and business relationships.

Minimum Requirements



  • Must be at least 18 years of age
  • Must be legally authorized to work in the country of employment without needing sponsorship for employment work visa status now or in the future



Formal Education & Certification

Required



  • Bachelor's degree (or foreign equivalent) in a Computer Science, Computer Engineering, or Information Technology field of study (e.g., Information Technology, Electronics and Instrumentation Engineering, Computer Systems Management, Mathematics) or equivalent experience.
  • Industry certifications (e.g., CISSP, Security+, VMware) preferred.


Knowledge & Experience

Required



  • 5+ years IT experience.
  • 5+ years preferred experience in the Cybersecurity, PAM, PKI, or IA community.
  • Proven ability to deliver technical solutions to a wide range of complex challenges.
  • 1+ year experience with PAM Security technologies and host system administration
  • 1+ year experience with PKI Security technologies and digital certificate life cycles
  • Preferred experience participating in troubleshooting, managing, and solving issues related to CyberArk Safes, Azure Key Vault, PKI Digital Certificates identities, systems, access, accounts, authentication, and authorization, as well as HashiCorp Vault.
  • Demonstrated experience with Linux/Unix, Windows, scripting (Bash, PowerShell, Python), SQL, LDAP, and web services
  • Experience with Agile principles and practices
  • Exposure with source control tools and orchestration systems (e.g. Subversion, GitHub, CVS, Ansible, Puppet, Rancher Kubernetes, Docker Swarm, Terraform)

Applied = 0
MORE JOBS LIKE THIS

(web-54bd5f4dd9-dz8tw)