13 of 13 Secrets Management Jobs in London

working +SC cleared role - must be elligible for clearance Are you an experienced CyberArk Architect who can define and deliver enterprise-grade PAM and secrets-management platforms in secure, complex environments? We are seeking a highly skilled CyberArk PAM Self-Hosted Architect to take ownership of architectural strategy … architecture and high-level design for CyberArk PAM Self-Hosted and CyberArk Conjur, defining these as strategic platforms for privileged access and secrets management. Establish and maintain reference architectures , patterns, and standards for onboarding infrastructure, applications, DevOps platforms and third parties into CyberArk. Architect CyberArk PAM Self-Hosted components ...

container registries, application services, and networking Implement monitoring, alerting, and observability frameworks with SLOs and diagnostic tools Enforce security through access controls, secrets management, vulnerability scanning, and policy-as-code Manage environment consistency and optimise cloud costs through performance monitoring and capacity planning Create reusable automation tools, templates … Bicep Extensive CI/CD pipeline experience with GitHub Actions or Azure Pipelines Background in observability and telemetry solutions Understanding of cloud security, identity management, and compliance frameworks Networking fundamentals and familiarity with Azure databases and messaging services Scripting skills (Bash/PowerShell/Python) and Linux system administration ...

Security Lead to validate findings, prioritise risk, implement fixes, and strengthen security controls. A strong understanding of software development, DevSecOps practices, and vulnerability management is essential. Key Responsibilities Own end-to-end remediation of AWS and workload vulnerabilities: confirm findings, assess impact, prioritise actions, and track through to closure. … Work with the AWS Security Lead to ensure remediation aligns with AWS security controls, internal risk policies, and compliance requirements. Improve and automate vulnerability management processes (e.g., scanning coverage, SLAs, exception handling, evidence capture). Embed security into CI/CD and the SDLC: shift-left reviews, secure coding ...

Kubernetes deployments (Helm, Terraform). Exposure to security best practices within regulated environments, including OWASP fundamentals, authentication and authorisation standards (OAuth2, OpenID Connect), secrets management, TLS/mTLS, and certificates. Proven ability to lead solution designs and guide engineering efforts across multiple integrations concurrently. Demonstrated experience working within ...

prem environments. +Build and manage Infrastructure-as-Code (Terraform, Ansible, CloudFormation, etc.). +Integrate security tooling into development workflows: SAST, DAST, dependency scanning, secrets management, etc. +Collaborate with engineering teams to perform threat modelling and ensure secure system design. Key Skills and Experience: +Strong experience with CI/… etc.). +Hands-on cloud experience (AWS, Azure, or GCP) with a strong focus on cloud security. +Proficiency with Infrastructure-as-Code and configuration management tools. +Strong scripting/programming abilities (Python, Bash, Go, etc.). Join a high-growth cybersecurity team where your work has real impact. ...

application security, cloud security (AWS), providing guidance and mentorship to other engineers. Contribute to drive implementation of security automation across cloud infrastructure configuration, vulnerability management, and compliance monitoring. Design, implement, and support the adoption of robust security architectures, controls, and best practices within our AWS cloud environment. What … within engineering teams. Security Automation & CI/CD Integration: Hands-on experience architecting and integrating a suite of security tools (SAST, DAST, SCA, IAST, secrets management) and automated controls directly into CI/CD pipelines like GitLab CI, Jenkins, or GitHub Actions. Vulnerability Management & Threat Intelligence: Deep ...

/CD pipelines and infrastructure-as-code (Terraform/CloudFormation) Embed security across the build and deployment lifecycle Implement container security (Docker/Kubernetes), secrets management and scanning Support deployments into restricted, offline, or air-gapped environments Automate security controls, monitoring, and compliance Collaborate with engineering and product ...

DevOps pipelinesRequirements Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat modelling, risk assessments ...

DevOps pipelines Requirements Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat modelling, risk ...

diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout … embed security early into development and delivery workflows. Data Security Engineering: Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Collaborate with the IAM team to align authentication, authorization, and privileged access policies with data security controls. Deliver security capabilities ...

SonarQube, OWASP ZAP) Conduct and coordinate penetration testing (internal and third-party); triage and drive remediation Deploy runtime threat detection (GuardDuty, Falco, Wazuh) Manage secrets detection and scanning (GitLeaks, Vault) Build observability with ELK stack, Elastic agents, and anomaly alerting What success looks like: 3 months Deploy SAST tooling … SonarQube) across all repositories with automated PR scanning Implement DAST scanning (OWASP ZAP) for staging environments with scheduled scans Deploy secrets detection tooling (e.g., GitLeaks, TruffleHog) across all repositories Establish a baseline security posture through initial penetration test; document and prioritise remediation backlog 6 months Complete remediation ...

program level, assessing potential impacts on existing products. Write Implementation Plans: Develop comprehensive technical implementation plans to guide the development and deployment process. Incident Management: Lead incident resolution efforts from a technical standpoint, working closely with incident management teams to ensure quick and effective resolution. Root Cause Analysis … security policies and proactively address security concerns. Support Secure Integrations: Work with other teams to facilitate secure changes with minimal disruption. Team and Stakeholder Management Stakeholder Collaboration: Partner with engineers based in Leeds and London and from other suppliers responsible for different platform components to minimise product disruptions, being ...

determine best practices for automation tools such as Power Automate Desktop. * Build out robust ALM processes using Azure DevOps or GitHub - including pipelines, solution management, environment variables, and connection references. * Implement observability and monitoring through Application Insights, Azure Monitor, and alerting frameworks. * Design secure integration layers using Azure services … such as API Management, Service Bus, Functions, Logic Apps, and Key Vault. * Lead architecture reviews, threat modelling, and compliance assurance processes. * Review code and flows to ensure performance, resilience, and scalability - applying best practices like retries and idempotency. * Guide deployment strategies and structured rollback procedures. * Act as a technical ...