1 to 25 of 109 Secrets Management Jobs in London

Terraform, CloudFormation, or similar tools. A solid grasp of system observability, monitoring, and alerting practices (CloudWatch, Grafana, or equivalent). Exposure to platform security principles including identity/access management, secrets handling, and environment isolation. Strong scripting and automation skills (e.g. Bash, Groovy, Python, Rust, Node.js, PHP). Comfortable partnering with engineers to improve workflows and resolve cross More ❯

scalable, and secure applications hosted on AWS Cloud, leveraging multi-region deployment strategies Enforce AWS security best practices to safeguard data, applications, and systems, including IAM policy design, access management, encryption standards, and compliance audits Design, implement, and manage various DevOps tools and technologies, including CI/CD platforms (Jenkins, GitLab CI), configuration management tools (Ansible, Puppet), and … between DevOps, development, security, and operations teams Troubleshoot complex system issues, analyze logs and performance metrics, and provide actionable recommendations Document and refine DevOps practices, maintaining version control, release management workflows, and configuration documentation Your Profile Essential skills/knowledge/experience: AWS Security & Compliance Expertise: Deep understanding of AWS Security, Identity, and Compliance services, including IAM, AWS Organizations … SCPs, Secrets Manager, AWS Config, GuardDuty, Security Hub, CloudTrail, and AWS KMS for encryption, ensuring robust cloud security Threat Detection & Compliance: Implementation of AWS security tools like Amazon Detective, AWS Shield, WAF, AWS Firewall Manager, enforcing security compliance standards such as ISO 27001, SOC2, GDPR, and NIST frameworks Collaborate with Solution Architects: Work closely with solution architects to design More ❯

Have deep expertise in: Cloud Infrastructure (AWS): EC2, S3, RDS, IAM, VPC, CloudWatch, CloudTrail, Lambda, SQS/SNS CI/CD Pipelines: Bitbucket Pipelines (or similar), multi-stage pipeline management, gated deployments Security Operations: Snyk, IAM policies, threat modeling, zero-trust access, MFA, secrets management Implementing and automating compliance requirements (IEC 62304, ISO 27001, HIPAA, MDR) Delivering … the better our work will be. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management More ❯

CI/CD pipelines (GitLab/Jenkins/GitHub) Configuring and running Code/Binary scans using solutions like SonarQube, Semgrep, Blackbuck, Trivy, GitLeaks Veracode, etc. Configuring and using Secrets management tools like Vault and Cloud native solutions Broad knowledge of SDLC Tools, specifically Build, Test and Deploy Automation tools, e.g., Maven, Gradle, Selenium, Ansible, etc. Good understanding … ensure knowledge Articles of all supported systems is continually updated. To provide a high level of customer service, whilst working under pressure. To follow and adhere to established Incident Management, Change Management and Problem Management procedures. LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling More ❯

Proven experience of managing and securing AWS cloud environments with configuration of key services like AWS WAF, CloudWatch, CloudTrail, Kubernetes, GuardDuty, X-Ray, Control Tower, Security Hub, Shield, Cognito, Secrets Manager, Key Management Service; Experience with corresponding services from other cloud providers is highly desirable Experience with DevSecOps tooling to setup CI/CD pipelines including Jenkins , GitHub More ❯

Proven experience of managing and securing AWS cloud environments with configuration of key services like AWS WAF, CloudWatch, CloudTrail, Kubernetes, GuardDuty, X-Ray, Control Tower, Security Hub, Shield, Cognito, Secrets Manager, Key Management Service; Experience with corresponding services from other cloud providers is highly desirable Experience with DevSecOps tooling to setup CI/CD pipelines including Jenkins , GitHub More ❯

outs. Implement end-to-end observability —metrics, traces, logs, and alerts—so engineers and customers alike can trust the health and performance of our agentic workers. Champion platform security : secrets management, zero-trust networking, least-privilege IAM, image provenance, and compliance-ready audit trails. Collaborate closely with AI & product engineers , shaping runtime environments, data pipelines, and workflow orchestration … etc.) with automated testing, linting, security scanning, and deploy gates. Monitoring & Observability : Prometheus, Grafana, Loki, OpenTelemetry, ELK stack; designing end-to-end visibility into systems. Security Best Practices : secret management (Vault, AWS Secrets Manager), image scanning, least privilege access, zero trust networking. Auditing & Policy Enforcement : integrating runtime policies, access controls, and system-level logging (SIEM-friendly formats). More ❯

of microservices. Implement best practices for container orchestration and monitoring. Manage and secure sensitive information using Key Vault, ensuring proper access control and compliance with security policies. Implement automated secrets management workflows. Design and maintain CI/CD pipelines using GitHub Actions. Automate testing, building, and deployment processes. Integrate with other tools and services for seamless workflows. Develop More ❯

and scaling for Redis, Kafka, and PostgreSQL Implementing observability and monitoring (Prometheus, Grafana, Loki, etc.) Managing and access control frameworks (Keycloak or similar) Championing infrastructure security best practices : RBAC, secrets management, hardening Collaborating with backend and AI engineers to ensure performance and reliability Supporting cloud and on-premise deployments in secure and civilian domains Maintaining existing legacy systems More ❯

at Goldman Sachs Get AI-powered advice on this job and more exclusive features. Job Description Job Description Goldman Sachs is a leading global investment banking, securities and investment management firm that provides a wide range of services worldwide to a substantial and diversified client base that includes corporations, financial institutions, governments and high net-worth individuals. Founded in … it is one of the oldest and largest investment banking firms. Secrets and Encryption Services is part of the Identity and Access Management (IAM) business unit within Core Engineering Division of Goldman Sachs. Our mission is to protect the firm and our clients from cyberthreats such as credential compromise through the services we deliver and operate. The S … ES team is on a journey to uplift credential management solutions across the enterprise with a transformational programme to improve the security posture for the firm. including the integration and adoption of HashiCorp Vault across environments. The Role Role Overview We are looking for a motivated and skilled Platform Engineer with a developing interest in cyber security and secrets More ❯

support secure, reliable, and efficient access to compute resources in an on-premise datacenter environment. You will work closely with engineers and researchers to implement solutions around deployment, configuration management, and system security. Essential functions • Implement and maintain infrastructure-as-code using tools like Terraform and Ansible • Develop and manage secure access and identity controls, particularly using AWS IAM … and related services • Support deployment of internal services with HTTPS, secrets management, and authentication tooling • Contribute to the configuration and monitoring of HPC systems and related services • Design and support centralized log collection and syslog forwarding for the compute cluster • Collaborate with software and infrastructure teams to ensure reliable compute access for researchers Qualifications • Strong understanding of infrastructure … automation tools such as Terraform and Ansible • Experience working with AWS, including VPCs, EC2, IAM, and related services • Familiarity with secure service deployment practices including TLS/HTTPS and secrets management (e.g. Vault) • Experience with centralized logging (e.g. syslog, journald, log forwarders, ELK, or Loki/Promtail) • Comfort working in Linux environments and automating common administrative tasks • Knowledge More ❯

DevOps Lead. Focus on building scalable and maintainable infrastructure that supports software delivery pipelines and application requirements while establishing and following DevOps best practices within the organisation. AWS Service Management : Deploy and manage core AWS services including EC2, S3, VPC, and ECS to support application deployment and operations. CI/CD Pipeline Development : Build and improve CI/CD … deployment processes for continuous integration and delivery. Container Orchestration : Work with Docker containers and manage deployments on Amazon ECS, implementing auto-scaling and load balancing solutions. Security and Access Management : Implement AWS security best practices, including IAM permissions, AWS Organizations, Secrets Manager for credentials, and security groups to ensure secure cloud resources. Cloudflare Integration : Configure and maintain Cloudflare … services for DNS management, CDN, and DDoS protection to enhance security and performance. Monitoring and Optimization : Implement monitoring solutions using AWS CloudWatch and related tools to ensure system health and performance while optimizing resource utilization. Documentation and Knowledge Sharing : Create and maintain documentation for infrastructure components and deployment processes, promoting DevOps best practices across the organization. Cross-team Collaboration More ❯

support secure, reliable, and efficient access to compute resources in an on-premise datacenter environment. You will work closely with engineers and researchers to implement solutions around deployment, configuration management, and system security. Essential functions Implement and maintain infrastructure-as-code using tools like Terraform and Ansible Develop and manage secure access and identity controls, particularly using AWS IAM … and related services Support deployment of internal services with HTTPS, secrets management, and authentication tooling Contribute to the configuration and monitoring of HPC systems and related services Design and support centralized log collection and syslog forwarding for the compute cluster Collaborate with software and infrastructure teams to ensure reliable compute access for researchers Qualifications Strong understanding of infrastructure … automation tools such as Terraform and Ansible Experience working with AWS, including VPCs, EC2, IAM, and related services Familiarity with secure service deployment practices including TLS/HTTPS and secrets management (e.g., Vault) Experience with centralized logging (e.g., syslog, journald, log forwarders, ELK, or Loki/Promtail) Comfort working in Linux environments and automating common administrative tasks Knowledge More ❯

and progressive roll-outs that make releases routine. Build end-to-end observability (metrics, traces, logs, alerts) so engineers and customers trust system health. Champion security and compliance, including secrets management, zero-trust networking, least-privilege IAM and audit trails ready for GDPR and SOC 2. Partner with AI and product engineers to shape runtime environments and data … with automated tests and security gates. An observability and SRE mindset, using tools such as Prometheus, Grafana, Loki or ELK and OpenTelemetry. A security-first but pragmatic approach, covering secrets management, image provenance and zero-trust networking. Proficiency in at least one systems language (Go, Python or Java) and familiarity with modern event-driven architectures. The ability to More ❯

and progressive roll-outs that make releases routine. Build end-to-end observability (metrics, traces, logs, alerts) so engineers and customers trust system health. Champion security and compliance, including secrets management, zero-trust networking, least-privilege IAM and audit trails ready for GDPR and SOC 2. Partner with AI and product engineers to shape runtime environments and data … with automated tests and security gates. An observability and SRE mindset, using tools such as Prometheus, Grafana, Loki or ELK and OpenTelemetry. A security-first but pragmatic approach, covering secrets management, image provenance and zero-trust networking. Proficiency in at least one systems language (Go, Python or Java) and familiarity with modern event-driven architectures. The ability to More ❯

and progressive roll-outs that make releases routine. Build end-to-end observability (metrics, traces, logs, alerts) so engineers and customers trust system health. Champion security and compliance, including secrets management, zero-trust networking, least-privilege IAM and audit trails ready for GDPR and SOC 2. Partner with AI and product engineers to shape runtime environments and data … with automated tests and security gates. An observability and SRE mindset, using tools such as Prometheus, Grafana, Loki or ELK and OpenTelemetry. A security-first but pragmatic approach, covering secrets management, image provenance and zero-trust networking. Proficiency in at least one systems language (Go, Python or Java) and familiarity with modern event-driven architectures. The ability to More ❯

OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/ More ❯

Goldman Sachs is a leading global investment banking, securities, and investment management firm that provides a wide range of services worldwide to a substantial and diversified client base, including corporations, financial institutions, governments, and high net-worth individuals. Founded in 1869, it is one of the oldest and largest investment banking firms. Secrets and Encryption Services is part … of the Identity and Access Management (IAM) business unit within the Core Engineering Division of Goldman Sachs. Our mission is to protect the firm and our clients from cyber threats such as credential compromise through the services we deliver and operate. The S&ES team is on a journey to uplift credential management solutions across the enterprise, including … the integration and adoption of HashiCorp Vault across environments. The Role Role Overview: We are seeking a motivated and skilled Platform Engineer with an interest in cybersecurity and secrets management to join our team. The candidate will contribute to ensuring the reliability, performance, and scalability of our platform and infrastructure while learning and implementing security best practices. The More ❯

Goldman Sachs is a leading global investment banking, securities and investment management firm that provides a wide range of services worldwide to a substantial and diversified client base that includes corporations, financial institutions, governments and high net-worth individuals. Founded in 1869, it is one of the oldest and largest investment banking firms. Secrets and Encryption Services is … part of the Identity and Access Management (IAM) business unit within Core Engineering Division of Goldman Sachs. Our mission is to protect the firm and our clients from cyberthreats such as credential compromise through the services we deliver and operate. The S&ES team is on a journey to uplift credential management solutions across the enterprise with a … and adoption of HashiCorp Vault across environments. The Role Role Overview: We are looking for a motivated and skilled Platform Engineer with a developing interest in cyber security and secrets management to join our team. The ideal candidate will contribute to ensuring the reliability, performance, and scalability of our platform and infrastructure while learning and implementing security best More ❯

Description Position Description: The IAM Senior Engineer will be responsible for supporting the development and delivery of Privileged Account Management (PAM) solutions for our on-prem and cloud infrastructure. This is a multifaceted role that involves engineering, hands-on support, and advanced troubleshooting responsibilities as well support of project-based work for two leading PAM platforms (Hashicorp and CyberArk … . Position Responsibilities: Assist in the buildout of Hashicorp Vault enterprise in a highly available environment Streamline application onboarding and migration as it relates to secrets management within Hashicorp Vault and CyberArk Work with IT teams across the company to ensure Hashicorp Vault and CyberArk are adopted consistently and effectively Build upon the Hashicorp Vault foundation by adding … training, guidance and mentorship for junior staff Qualifications: Hands-on PAM solution experience, SaaS/Cloud based vendors preferred Proven experience with automation, CI/CD, orchestration, and configuration management Experience with CI/CD tools such as Jenkins Experience with image lifecycle management using tools such as Packer Experience with Infrastructure as Code (IaC) using tools such More ❯

OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/ More ❯

modelling exercises for cloud-native applications, microservices, and infrastructure components. Manage internal and external penetration testing engagements for Funding Circle applications, services, and cloud infrastructure. Oversee and enhance vulnerability management processes, focusing on strategic remediation, root cause analysis, and preventative measures. Contribute to the implementation of security automation across cloud infrastructure configuration, vulnerability management, and compliance monitoring. Design … Security, with a focus on AWS cloud security and application security. Deep expertise in designing, implementing, securing, and managing AWS security services. Experience integrating security tooling (SAST, DAST, SCA, secrets management, IAST) within CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions). Proven experience supporting secure software development lifecycle (SSDLC) practices and secure coding standards. Knowledge … attack vectors, and mitigation techniques. Experience securing Infrastructure as Code (Terraform) and implementing security checks. Experience with container security and Kubernetes/EKS security. Ability to contribute to vulnerability management programs, including triaging, root cause analysis, and remediation planning. Strong communication skills to articulate complex security concepts clearly. Knowledge of security frameworks and standards (e.g., NIST CSF, CIS Benchmarks More ❯

modelling exercises for cloud-native applications, microservices, and infrastructure components. Manage internal and external penetration testing engagements for Funding Circle applications, services, and cloud infrastructure. Oversee and enhance vulnerability management processes, focusing on strategic remediation, root cause analysis, and preventative measures. Contribute to drive implementation of security automation across cloud infrastructure configuration, vulnerability management, and compliance monitoring. Design … demonstrable expertise in designing, implementing, securing, and managing a wide range of AWS security services . Proven, hands-on experience architecting, building, and integrating security tooling (SAST, DAST, SCA, secrets management, IAST) and automated security controls within CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions). Strong track record of defining, implementing, measuring, and supporting the … Code (IaC) , particularly Terraform, and implementing relevant security checks. Solid experience with container security and securing container orchestration platforms (Kubernetes/EKS). Proven ability contributing significantly to vulnerability management programs, including advanced triaging, root cause analysis, risk assessment, and strategic remediation planning. Strong communication and influencing skills, with the ability to articulate complex security concepts clearly to technical More ❯

IaC), cloud security, and CI/CD practices. You will play a key role in maintaining and evolving the infrastructure underpinning critical applications and data pipelines. Key Responsibilities Codebase Management & Maintenance : Maintain and enhance the existing digitall-land-python codebase, ensuring reliability, scalability, and compliance with coding standards. Collaborate with developers and data engineers to support application lifecycle and … Establish and enforce infrastructure security best practices , including secure networking, encryption, and logging. Work with security teams to conduct threat modeling, penetration testing, and audit logging. Identity and Access Management (IAM) : Implement and manage IAM policies and permissions for cloud-native applications and GitHub repositories. Define least-privilege access roles for both human and service identities, aligning with compliance … requirements. Oversee changes to environment variables and secrets for multiple applications and Airflow DAGs , ensuring secure storage and controlled access. Maintain configuration consistency across dev, test, staging, and production environments. Strong Python programming background with experience supporting infrastructure-heavy codebases. Proven experience with Terraform or similar IaC tools (e.g., Pulumi, AWS CloudFormation). Deep knowledge of cloud platforms (AWS More ❯

and management. Proficient in scripting languages such as PowerShell, Bash, and Python, with a track record of automating complex workflows and enhancing operational efficiency. Strong working knowledge of configuration management tools like Ansible, Chef, and Octopus, with experience implementing infrastructure-as-code best practices. Experienced in the configuration, administration, and optimization of both Windows and Linux server environments . … and managing virtual environments. Experienced in infrastructure provisioning using Terraform or AWS CloudFormation , applying infrastructure-as-code principles for scalable, repeatable deployments. Hands-on experience with data store and secrets management solutions , including tools like HashiCorp Vault and Consul, ensuring secure and compliant system operations. Strong experience working with and integrating RESTful APIs , enabling efficient system interoperability and More ❯