13 of 13 Permanent Key Management Jobs in London

Acadian Asset Management LLC is a Boston-headquartered investment management firm with wholly owned affiliates located in Singapore, London, and Sydney. As of March 31, 2025, the firm managed approximately US$122 billion on behalf of major pension funds, endowments, foundations, governments and other investors based in the U.S. and abroad.Position Overview:The Senior Security Engineer, reporting to … consistently governing our AWS Platform-as-a-Service (PaaS) infrastructure. We are looking for candidates with deep experience and understanding of continuous delivery, container security, SAST/DAST, secrets management, Identity and Access Management (IAM) governance, privilege management, encryption and key management, threat detection, logging, cloud infrastructure security and policy-as-code.What You'll Do … the Identity and Config team to ensure least privilege in Acadian's federated identity systems, utilizing tools such as Saviynt, Okta and Microsoft Entra ID. Assist with federation of key enterprise applications as necessary. Build Security infrastructure in AWS using Terraform and Cloudformation, leveraging best practices such as multi-region and multi-Availability zone architecture with autoscaling. Assist with More ❯

platforms, you will provide technical leadership and strategic direction in building scalable, secure, and resilient cloud-native systems based on AWS, Kubernetes, Kafka, microservices, Java, and event-driven design. Key Responsibilities Cloud Architecture Design: Lead the design of cloud-based systems and solutions, utilising AWS and modern architectural patterns such as microservices, event-driven architectures, and serverless computing to … the development of CI/CD pipelines, infrastructure as code (IaC), and automation to enable fast and reliable delivery of cloud services. Work closely with DevOps, engineering teams, product management, and stakeholders to ensure that architectural strategies align with both technical and business objectives. Performance & Cost Optimisation: Drive performance tuning, cost optimisation, and cloud resource management strategies to … maximise efficiency and minimise cloud spend. Risk Management: Identify and mitigate technical risks in cloud-based systems and infrastructure. Documentation & Best Practices: Develop and maintain architectural standards, design patterns, and documentation, ensuring a shared understanding of technical solutions. Skills, Knowledge and Expertise Degree in Computer Science, Software Engineering, Information Technology, or a related field or professional equivalent maybe considered. More ❯

in fast-paced, product-focused environments. You will play a critical role in shaping secure architecture, implementing scalable protection mechanisms, and driving a security-first culture across the company. Key Responsibilities Security Architecture & Design Design and implement secure infrastructure across cloud, web, and distributed application environments. Provide architectural guidance for cryptographic key management, signing workflows, and secure … APIs. Evaluate and enhance security of components related to digital asset management, identity systems, or transaction flows. Risk Management & Threat Modelling Conduct comprehensive threat modelling and risk assessments, especially around distributed or high-value transaction systems. Define controls for securing sensitive operations such as wallet integrations, off-chain/on-chain data flows, and internal tooling. Develop and … and optimise detection mechanisms and playbooks for novel attack vectors, including abuse prevention and fraud detection. Governance, Compliance & Best Practices Help define internal standards for security development practices, secrets management, and infrastructure hardening. Maintain compliance with relevant frameworks (e.g., SOC 2, ISO 27001, GDPR), and support any industry-specific due diligence. Cross-Functional Collaboration Partner with engineering, product, and More ❯

CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static/dynamic analysis, container and IaC scanning, SBOM management, and supply-chain security; automate enforcement through CI/CD pipelines. Cloud & Infrastructure Security - Design and implement robust controls for AWS (primary) and Azure/GCP (secondary): IAM, network … segmentation, KMS, secrets management, WAF, EDR, and zero-trust patterns. Identity & Access Management (IAM) - Own enterprise IAM strategy, including RBAC, least-privilege provisioning, SSO, federation (OIDC/SAML), and privileged-access workflows. Monitoring, Detection & Response - Define audit logging, metrics, and telemetry requirements; integrate with SIEM/SOAR to deliver actionable alerts and playbooks for engineering-led incident response. … on software teams, especially for ISO27001 and SOC2. FedRAMP experience advantageous. Demonstrated experience performing threat modelling, penetration test scoping, and vulnerability management. Deep understanding of IAM concepts, encryption/key-management, and secure network design. Excellent communication skills with ability to translate technical risk to non-technical stakeholders. Preferred, but not essential Certifications such as CISSP, CSSLP, AWS More ❯

alignment across the organization. Design the security architecture for a state-of-the-art and future-proof PKI infrastructure, with adequate Certificate Authority (CA) topology, PKI technology, certificate lifecycle management tools and other components. Lead the strategic transition of the PKI infrastructure to Post-Quantum Cryptography (PQC), ensuring that cryptographic systems are designed with cryptographic agility in mind. Closely … collaborate with the IT and Operations teams in charge of deploying and operating the PKI infrastructure. Oversee critical PKI processes such as root key ceremonies and other essential CA processes to maintain the integrity and trust of our PKI systems. Develop and maintain detailed documentation of PKI processes. Ensure proper governance framework, certificate policies and practices statement are implemented … centre of expertise, providing specialized knowledge and guidance on all aspects of PKI systems. Keep abreast with the latest trends, technologies, and industry best practices and serve as a key advisor. What you need to be successful Master's degree in information technology, computer science, cybersecurity, or a related field. Over 10 years of professional experience, of which at More ❯

Goldman Sachs is a leading global investment banking, securities and investment management firm that provides a wide range of services worldwide to a substantial and diversified client base that includes corporations, financial institutions, governments and high net-worth individuals. Founded in 1869, it is one of the oldest and largest investment banking firms. Secrets and Encryption Services is part … of the Identity and Access Management (IAM) business unit within Core Engineering Division of Goldman Sachs. Our mission is to protect the firm and our clients from cyberthreats such as credential compromise through the services we deliver and operate. The S&ES team is on a journey to uplift credential management solutions across the enterprise with a transformational … adoption of HashiCorp Vault across environments. The Role Role Overview: We are looking for a motivated and skilled Platform Engineer with a developing interest in cyber security and secrets management to join our team. The ideal candidate will contribute to ensuring the reliability, performance, and scalability of our platform and infrastructure while learning and implementing security best practices. This More ❯

to join their Enterprise Technology team. This hands-on role will focus on uplifting Ansible usage, enhancing automation workflows, and improving infrastructure security and reliability across a Linux environment. Key Responsibilities: Refactor and optimise Ansible playbooks and roles for maintainability, security, and robustness Improve pre-checks, conditional logic, error handling, and reporting Integrate with secret management systems such … as CyberArk and Ansible Vault Enhance Ansible inventory management and automation scheduling Build reusable templates for ad-hoc tasks and remediation Develop automation for CIS compliance and reporting Contribute to Molecule testing environments for Ansible roles Collaborate with Linux, Infrastructure, and InfoSec teams Essential Skills & Experience: Expert-level understanding of Ansible Core and CLI Strong background in Linux systems … engineering and automation Proven track record of writing secure, idempotent, and testable playbooks Experience with secret management tools (e.g. CyberArk, Ansible Vault) Knowledge of Linux patch management, system hardening, and CIS compliance Strong problem-solving, documentation, and communication skills Desirable: Experience with Molecule testing for Ansible roles Familiarity with Ansible Automation Platform (AAP) Understanding of SSH key More ❯

languages such as PowerShell scripts, YAML, Python Experience of azure automation using arm templates Experience of Linux, Windows Server, Azure SQL Server, Azure Storage, CosmosDB Experience in cloud security management (IAM, Security Groups, certificates & key management) Experience with logging, monitoring and alerting platforms such as app Insights Experience of working within an Agile and Scrum team Please More ❯

Information Security Manager. Responsible for ensuring that all servers and other IT related equipment is hardened against industry security best practices and standards. Performs audits of firewall(s), log management, intrusion detection systems, and content filtering controls (email, DLP and other technical controls). Conducts internal security audits and reviews as needed, together with appropriate recommendations and conclusions. Identifies … computer vulnerabilities in internal servers, external servers, and applications (cloud or on-premises) and collaborates with stakeholders to ensure associated risks are mitigated and closed. Follows the Security Incident Management Response Policy in responding to security incidents and guides the Incident Response Team in handling information security incidents, to include advising and participating in remediation, closure and lessons learned. … protection solutions. Good understanding and knowledge of security concepts, protocols, processes, architectures, and platforms (authentication and access control technologies, intrusion detection, network traffic analysis, Web Application Firewalls, Encryption and Key Management, SIEM technology, incident handling, media/malware analysis, etc.) Good knowledge of cloud technologies, architecture, and security controls. Ability to define problems, collect data, establish facts, and More ❯

as a Subject Matter Expert (SME) in Windows-based enterprise infrastructures. You'll play a central role in the design, deployment, and support of high-security systems that underpin key defence and aerospace operations. Your Impact Take ownership of complex technical issues through to resolution, collaborating with users and other IT teams. Provide expert-level troubleshooting for incidents escalated … Endpoint & Configuration: Windows 10 & 11 Microsoft Endpoint Configuration Manager (MECM) Monitoring & Observability: Microsoft System Centre Operations Manager (SCOM) PKI Technologies: Microsoft Certificate Services, Hardware Security Modules (HSMs), and lifecycle key management Security Clearance This role is subject to pre-employment screening in line with the UK Government's Baseline Personnel Security Standard (BPSS). An additional range of … to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity). Rewarding Performance : All employees at management level and below are eligible for our bonus scheme. Never Stop Learning : Free access to 4,000+ online courses via Coursera and LinkedIn Learning. Refer a friend: Receive a More ❯

in the world to crypto-forward companies. You will lead conversations with customers about everything related to security and governance on the custody platform. This includes deployment models with Key Management Systems (HSMs and MPC), permission models, and features related to entitlements and policies. WHAT YOU'LL DO: Identify and secure commercial relationships with Ripple customers, including large … with large financial institutions, asset managers, and crypto natives who require digital asset custody solutions. 10+ years of experience in Sales/Business Development, Software/IT System product management, Technical Sales, Solution Architecture, or equivalent. 5+ years of relevant experience advising and selling to financial institutions. Bilingual a nice to have Demonstrated track record of successful sales or More ❯

clearance; British Citizenship is required for this role. Preferred qualifications: Experience designing, building, and deploying cloud-based solution architectures. Experience with standard IT security practices (such as encryption, certificates, key management and use of HSMs or other specialist security equipment). Ability to execute in a customer-focused environment and advocate for partners and customers in a cross More ❯

requires hands-on experience which includes the following responsibilities: Spearheaded User Acceptance Testing (UAT) from a client-focused perspective, utilizing automation tools to streamline regression testing and ensuring comprehensive management of test artifacts throughout the entire test execution lifecycle. Collaborate closely with Visa's technology, product, and solution teams to understand new business initiatives and ensure the delivery of … to 3 years of relevant experience with a PhD A bachelor's degree with 8+ years of experience, or an advanced degree with 6+ years of experience, in Product Management, Solutions Management, Quality Engineering, or a comparable area is required. Hands-on experience in the Payments industry. Proven expertise in developing, writing, and executing test cases from a … or mobile applications through technical implementations. Superior analytical and problem-solving skills, with the agility to adapt to evolving priorities and challenges. Hands-on experience with Identity and Access Management (IAM) solutions-including oAuth, OpenID Connect, SAML, and security tokens (JWS, JWE, access token, ID token)-as well as cryptographic concepts and key management. Skilled using product management More ❯