Managed File Transfer (MFT) Engineer

HCL

We are a $13+ billion global technology company, home to more than 224,000 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud, and AI, powered by a broad portfolio of technology services and products.

HCLTech is a globally recognized leader in the Tech and IT industry, but we’ve never forgotten the startup mindset that got us here. We’ve always approached our work with an idea-first attitude because every one of our accomplishments —no matter how big or small —can be traced back to an idea’s single spark.

It’s that spark —that inner drive —that sets our people apart from our competitors. It enables us not just to pull off game-changing feat after game-changing feat but to better our world in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled.

Note: Candidates must be eligible to work in Netherlands

Fluent in Dutch and English.

Job Description

* Design and operate the interactive access service based on Apache Guacamole, containerized on OpenShift, translating HTTPS to native protocols (SSH, RDP, SQL, VNC)

* Build and maintain the file transfer service using S3 presigned URLs with time-bound expiry and tenant-scoped bucket/path access controls

* Engineer tenant isolation within shared SaaS-style deployments, ensuring each consuming team only accesses their own targets through predefined connections and network-level controls

* Design credential lifecycle automation: retrieval/seeding at session start, reset/removal at session stop, integrated with Privileged Access Management and credential stores

* Build session recording and logging pipelines shipping audit data to tenant-specified log repositories (Kafka, S3, Git)

* Implement metering and billing event generation for per-tenant consumption tracking

* Develop CI/CD pipelines for automated platform lifecycle management: provisioning, start, stop, decommissioning (immutable infrastructure / cattle model)

* Collaborate with security teams to refine detection scenarios every sprint and maintain audited control reporting (Seven IT Risk Controls, COBIT framework)

* Define and monitor SLIs/SLOs: start latency, session success rate, recording completeness, tenant isolation violations, credential reset compliance

Required Skills & Experience

* 3+ years hands-on experience with Kubernetes/OpenShift in production (deployment, networking, RBAC, persistent storage, operators)

* Proficiency in Go and Python for platform service development, automation, and tooling

* Strong Linux systems engineering (SSH, networking, security hardening, systemd)

* Container orchestration and CI/CD pipeline design (Helm, ArgoCD, Tekton, or equivalent)

* S3-compatible object storage (MinIO or AWS S3): presigned URLs, bucket policies, IAM integration

* Azure DevOps for backlog management, CI/CD pipelines, and release workflows

* Infrastructure as Code: Terraform, Ansible, or equivalent

* Understanding of security principles: zero-trust, defence-in-depth, protocol insulation, MFA, credential management

* Experience with IAM systems, directory services integration, and conditional access policies

* Familiarity with logging and monitoring stacks (Kafka, Elasticsearch, Prometheus/Grafana)

Nice to Have

* VMware Cloud Foundation (VCF) experience or familiarity with VCF-based infrastructure

* Experience with Privileged Access Management tooling (CyberArk, HashiCorp Vault)

* Experience with Apache Guacamole or similar remote access gateway technologies

* RDP and Windows Server administration knowledge

* Experience in regulated financial services environments (DORA, NIS2, or equivalent regulatory frameworks)

* Understanding of network segmentation and firewall rule management

* SOC2 Type 2 reporting or equivalent security assurance frameworks

* Experience designing metering/billing event pipelines for internal platform products

Benefits

* A supportive, diverse, and global team with a brilliant culture.

* Competitive compensation and benefits that includes up to 20 days’ vacation per year, various insurances like Term life and Business Travel insurance. These are apart from the statutory benefits applicable in the country. Employee benefits are regulated by an internal policy that contains full details regarding the entitlement and conditions for the benefits as per the law of the land.

* Great opportunities to make the role your own, upskill yourself and get involved with exciting projects.

* Total Wellbeing is our focus. Alongside your professional excellence, you join the likeminded colleagues to create a larger impact within the company and society at large in your chosen area of passion - CSR Council, Diversity Council, Women Connect, Sparks – Engagement Champion to name a few. For more information on how we process your personal data, please refer to HCLTech’s Candidate Data Privacy Notice.

To know more about us visit – www.hcltech.com