1 to 25 of 36 Permanent Secrets Management Jobs in England

secure data pipelines, model training/inference, and AI-integrated applications across on-prem and cloud. Secure MLOps/ML platforms: architect identity, secrets management, network segmentation, and least-privilege access for feature stores, model registries, orchestration, and deployment pipelines. Data protection by design: establish controls for sensitive … with additional focus on AI/ML or data platform security at scale. Expertise in cloud security (AWS/Azure/GCP) including identity, secrets management, key management (KMS/HSM), network segmentation, and policy-as-code. Strong knowledge of AI/ML workflows: data ingestion/ ...

Trellix, Ivanti, ClearSwift, Yubikey Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25). Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response in MOD environments. Security compliance and regulatory frameworks (e.g., NIST … advocate for security best practices in a DevOps culture. Desirable Skills Containerization Security Expertise in Kubernetes security (e.g., RBAC, network policies, pod security standards, secrets management). Knowledge of container runtime security (e.g., container escapes, rootless containers, sandboxing). Image security best practices, including scanning, signing, and provenance ...

client based in London. The Role: This is a hands-on Vault platform owner position, focused on building, operating, and scaling secure secrets management across modern cloud and Kubernetes environments. You’ll play a key role in securing core infrastructure and enabling engineering teams to manage secrets … high-impact position within the organisation. Key Responsibilities: • Own and manage HashiCorp Vault (Enterprise preferred) within a production environment • Design and operate secure secrets management at scale • Implement and improve authentication methods, RBAC, and access controls • Work closely with platform teams to embed security into infrastructure and delivery ...

Code, RBAC, PIM, private endpoints, and secure landing zone design; AWS security experience also considered - Network security engineering: firewall policy design and lifecycle management, micro-segmentation, NSG/UDR/NVA architecture, hub-spoke topology, and perimeter defence for hybrid environments - WAF design, deployment, and operational tuning - Cloudflare, Azure … Application Gateway, or equivalent; custom rule authoring and false-positive management at production scale - Network flow log analysis and intrusion detection engineering - building detection logic for lateral movement, beaconing, anomalous egress, and C2 patterns - SIEM engineering: detection rule authoring (KQL, SPL, or equivalent), log pipeline design, alert correlation, triage ...

security‐first development practices. Cloud‐Native Application Readiness Ensure applications are designed for containerisation from inception, including the implementation of health check endpoints, secure secrets management via Azure Key Vault, correct port configuration for container workloads, and stateless design principles compatible with Azure Container Apps (ACA). Technical … Boot–based microservices in production environments. Azure Platform Integration Proven experience building applications that integrate with Azure‐native services, including Azure Key Vault for secrets management, Azure Storage APIs, and Azure Service Bus for event‐driven and asynchronous workloads. DevOps‐Aware Development Strong understanding ...

Port, Humanitec, service catalogue, golden paths Policy-as-code: Kyverno, OPA/Gatekeeper, Checkov, Sentinel Kubernetes ecosystem: Helm, Kustomize, Cilium, Calico, Istio, Karpenter, External Secrets Observability: Prometheus, Grafana, Datadog, AppDynamics, OpenTelemetry, Splunk Security: IAM, RBAC, SSO, secrets management, network policy, vulnerability scanning Reliability: SLOs, SLIs, incident management ...

scheduling tools Experience with Atlassian tools (e.g. Jira, Confluence) Bonus Skills Experience with Artifactory, SonarQube VMware (vSphere), SAN environments Security best practices (secrets management, vulnerability scanning) Security Requirement SC clearance (or willingness/eligibility to obtain) is required. ...

standards, guardrails, and design patterns that guide implementation across endpoints, cloud platforms, applications, and collaboration tools. Define policy and control requirements for encryption, key management, and secrets management in partnership with Cloud, Infrastructure, and Identity teams, ensuring alignment with data protection objectives. Engineering Oversight & Technology Enablement Oversee … Digital, Cloud Services, Infrastructure, and IT teams to ensure data protection controls are designed into platforms, not bolted on post-deployment. Incident Support & Risk Management Partner with Security Operations and Incident Response teams to support detection, investigation, and response to data protection incidents and policy violations. Ensure data protection ...

with monitoring and observability tooling such as Prometheus and Grafana. Knowledge of data and streaming technologies including Kafka, MongoDB, MySQL, and PostgreSQL, plus PKI, secrets management, and IAM. Excellent communication skills. Nice to have: Puppet, KeyCloak, Vault, and experience supporting microservice architectures. Immediate availability. Hays Specialist Recruitment Limited ...

balancers, VPNs, firewalls) Experience managing production databases (PostgreSQL, MySQL, NoSQL) and storage Scripting and automation using Python and/or Bash Security best practices, secrets management, and vulnerability scanning Experience 4–7 years in platform, infrastructure, or DevOps engineering Startup or high-growth environment experience strongly preferred Proven ...

Performance: Data modeling, SQL/NoSQL databases, caching strategies, and performance optimization in latency‐sensitive systems. Security: Enterprise security patterns; authentication protocols, mutual TLS, secrets management, and certificate rotation. Domain Knowledge: Equities, post‐trade, or financial services experience; trade lifecycle concepts, asset servicing, position management, reconciliation … help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. ...

Performance: Data modeling, SQL/NoSQL databases, caching strategies, and performance optimization in latency‐sensitive systems. Security: Enterprise security patterns; authentication protocols, mutual TLS, secrets management, and certificate rotation. Domain Knowledge: Equities, post‐trade, or financial services experience; trade lifecycle concepts, asset servicing, position management, reconciliation … help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. ...

cloud infrastructure roles. Terraform and Infrastructure as Code best practices. Jenkins-based CI/CD pipeline design, build, and optimisation. Observability, monitoring, alerting, incident management, and production operations. Kubernetes, Helm, networking, ingress, RBAC, secrets management, and scalable deployment patterns. Automation using Bash, Python, Java, or similar languages. ...

pipelines across backend, frontend, and data services Establish company-wide observability — logging, metrics, tracing, alerting, and on-call culture Take ownership of cloud cost management, optimising spend without compromising performance Champion operational excellence across the engineering org What You'll Bring Technical Cloud & IaC: Azure (AWS a bonus), Terraform …/Kubernetes, Docker, GitHub Actions Observability: Hands-on experience with logging, metrics, and distributed tracing frameworks Security: Secrets management, security scanning, and infrastructure hardening best practices Networking: VPCs, DNS, load balancers, VPNs, firewalls — you know your way around Data: Provisioning and scaling production-grade PostgreSQL, MySQL, NoSQL ...

mentoring others and driving improvements across CI/CD, observability, and security.Role & Responsibilities Design, build, and manage Azure infrastructure using Terraform, including modules, state management, and pipelines Develop and maintain CI/CD workflows (GitHub Actions, Azure DevOps or similar) Improve platform reliability, observability, and security across environments Take … communication skills and experience working collaboratively with engineering teams Desirable Azure certifications (AZ-400, AZ-104) Experience with policy-as-code (OPA, Sentinel) and secrets management ...

unit testing & integration testing Code quality gates & peer review discipline Secure coding practices Frontend Engineering TypeScript React Next.js Modern frontend patterns (hooks, state management, server/client data fetching) Robust API integration & error handling Identity & Security Architecture Authentication & authorisation design SSO flows OAuth2 & OpenID Connect JWT best practices (signing … Code (Terraform, Bicep or similar) DevOps & Delivery Advanced CI/CD pipelines (Azure DevOps, GitHub Actions) Build, test & release automation Secure pipeline design & secrets management Environment promotion strategies AI-Enabled Engineering AI-assisted development workflows (Copilot, Claude Code or similar) Advanced prompting for engineering tasks Agent-based ...

DevOps/GitHub Actions) Building and managing infrastructure using Terraform (including reusable modules) Supporting microservices architecture with a focus on availability and monitoring Implementing secrets management and secure configuration practices Automating build, test, and deployment workflows Writing scripts and tooling (PowerShell, Bash, Azure CLI) to improve efficiency Contributing ...

DevOps/GitHub Actions) Building and managing infrastructure using Terraform (including reusable modules) Supporting microservices architecture with a focus on availability and monitoring Implementing secrets management and secure configuration practices Automating build, test, and deployment workflows Writing scripts and tooling (PowerShell, Bash, Azure CLI) to improve efficiency Contributing ...

control Implement data quality checks and reconciliations at all steps in the process Collaborate with platform/infra teams on security, access controls, and secrets management Required Qualifications: 5+ years of experience in data engineering, analytics engineering, or backend engineering with significant data pipeline ownership Demonstrated past success … stakeholder management heavy data role Excellent communication skills, able to translate technical knowledge to non-technical colleagues Hands-on experience building and operating production workflows in Apache Airflow Hands-on experience delivering production-grade transformations in dbt, including tests and documentation Strong SQL skills and experience working across multiple ...

control Implement data quality checks and reconciliations at all steps in the process Collaborate with platform/infra teams on security, access controls, and secrets management Required Qualifications: 5+ years of experience in data engineering, analytics engineering, or backend engineering with significant data pipeline ownership Demonstrated past success … stakeholder management heavy data role Excellent communication skills, able to translate technical knowledge to non-technical colleagues Hands-on experience building and operating production workflows in Apache Airflow Hands-on experience delivering production-grade transformations in dbt, including tests and documentation Strong SQL skills and experience working across multiple ...

assess companies on sustainability. What you'll do Build and own infrastructure on Azure. Design and maintain CI/CD pipelines, container deployments, networking, secrets management, monitoring, and cost controls. Develop full-stack features end-to-end. From Postgres schema design through FastAPI endpoints to React interfaces … automate data collection and cleansing, and extract insights via LLM APIs (Anthropic, OpenAI, Gemini). Optimise for cost and quality through caching, batching, token management, and prompt and post-processing design. Contribute to technical decision-making as the team grows: architecture, tooling, code quality, and engineering practices. ...

experience operating and supporting high‐traffic, production Azure environments at scale. Infrastructure as Code Expertise Deep proficiency in Terraform, including module design, remote state management, workspace strategies, and multi‐environment deployment patterns. Monitoring & Observability Expertise Advanced experience with KQL for Azure Log Analytics, with the ability to design … operational insight and reporting. Security Automation Strong background in security automation, including passwordless authentication using OIDC, Azure Key Vault integration, and best practices for secrets management and identity‐driven access control. Azure Platform Knowledge In‐depth understanding of Azure Container Apps (ACA), virtual network integration, and Private Endpoint ...

across systems at every level of an industrial operation: ERP and finance platforms at the back office through to MES, WMS, and construction project management tools on the front line. You'll work closely with the data and AI team, contributing to an industrial data platform that helps clients … EventBridge, Glue, S3, Step Functions Proven ability to design and manage data pipelines and transformation workflows Expertise applying secure integration patterns: authentication, authorisation, encryption, secrets management Desirable Experience with Docker and container orchestration via ECS or EKS Familiarity with AWS analytics and AI/ML services — SageMaker, Redshift ...

development practices. Cloud‐Native Readiness : Ensure all application logic is designed for containerisation from inception. This includes implementing reliable health check endpoints, secure secret management using Azure Key Vault, correct port configuration for Container Apps, and stateless architecture aligned with Azure Container Apps (ACA) principles. Technical Mentorship : Provide hands … ownership of Spring Boot–based microservices architectures. Azure Integration : Demonstrated experience building applications that integrate with Azure-native services, including Azure Key Vault for secrets management, Azure Storage APIs, and Azure Service Bus for event-driven messaging. DevOps Mindset : Solid understanding of the end‐to‐end CI/ ...

.NET services. Performance & Scalability : Optimize GPU/CPU utilization, batching strategies, and memory management. Plan for multi-model and multi-tenant scenarios. MLOps & Lifecycle Management : Implement model versioning, artifact registries, and deployment workflows. Set up monitoring, logging, and alerting for solver performance. Security & Compliance : Apply best practices for secrets management, dependency scanning, and secure artifact storage. Additional responsibilities include analyzing large datasets, developing and improving algorithms, and collaborating with cross-functional teams to address engineering challenges and deliver optimized solutions. Required Skills & Experience ML Frameworks : Expert in TensorFlow (TF2/Keras), experience with ONNX Runtime for inference. ...