1 to 25 of 44 Permanent Secrets Management Jobs in the UK

secure data pipelines, model training/inference, and AI-integrated applications across on-prem and cloud. Secure MLOps/ML platforms: architect identity, secrets management, network segmentation, and least-privilege access for feature stores, model registries, orchestration, and deployment pipelines. Data protection by design: establish controls for sensitive … with additional focus on AI/ML or data platform security at scale. Expertise in cloud security (AWS/Azure/GCP) including identity, secrets management, key management (KMS/HSM), network segmentation, and policy-as-code. Strong knowledge of AI/ML workflows: data ingestion/ ...

Trellix, Ivanti, ClearSwift, Yubikey Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25). Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response in MOD environments. Security compliance and regulatory frameworks (e.g., NIST … advocate for security best practices in a DevOps culture. Desirable Skills Containerization Security Expertise in Kubernetes security (e.g., RBAC, network policies, pod security standards, secrets management). Knowledge of container runtime security (e.g., container escapes, rootless containers, sandboxing). Image security best practices, including scanning, signing, and provenance ...

client based in London. The Role: This is a hands-on Vault platform owner position, focused on building, operating, and scaling secure secrets management across modern cloud and Kubernetes environments. You’ll play a key role in securing core infrastructure and enabling engineering teams to manage secrets … high-impact position within the organisation. Key Responsibilities: • Own and manage HashiCorp Vault (Enterprise preferred) within a production environment • Design and operate secure secrets management at scale • Implement and improve authentication methods, RBAC, and access controls • Work closely with platform teams to embed security into infrastructure and delivery ...

Code, RBAC, PIM, private endpoints, and secure landing zone design; AWS security experience also considered - Network security engineering: firewall policy design and lifecycle management, micro-segmentation, NSG/UDR/NVA architecture, hub-spoke topology, and perimeter defence for hybrid environments - WAF design, deployment, and operational tuning - Cloudflare, Azure … Application Gateway, or equivalent; custom rule authoring and false-positive management at production scale - Network flow log analysis and intrusion detection engineering - building detection logic for lateral movement, beaconing, anomalous egress, and C2 patterns - SIEM engineering: detection rule authoring (KQL, SPL, or equivalent), log pipeline design, alert correlation, triage ...

security‐first development practices. Cloud‐Native Application Readiness Ensure applications are designed for containerisation from inception, including the implementation of health check endpoints, secure secrets management via Azure Key Vault, correct port configuration for container workloads, and stateless design principles compatible with Azure Container Apps (ACA). Technical … Boot–based microservices in production environments. Azure Platform Integration Proven experience building applications that integrate with Azure‐native services, including Azure Key Vault for secrets management, Azure Storage APIs, and Azure Service Bus for event‐driven and asynchronous workloads. DevOps‐Aware Development Strong understanding ...

shaping solution designs, estimates, and technical approaches Define target architectures, reference patterns, and guardrails (including landing zones) Design security-by-design solutions (IAM, encryption, secrets management, monitoring, policy enforcement) Architect resilient platforms with clear backup, disaster recovery, and operational strategies (RTO/RPO aligned) Enable delivery through Infrastructure … client environment Strong knowledge of networking, connectivity, and segmentation (including secure ingress/egress and private connectivity) Solid security foundations: IAM, least privilege, encryption, secrets management, and monitoring Experience designing highly available, multi-region architectures with defined disaster recovery strategies Automation-first mindset with Infrastructure as Code, configuration ...

ground up. That means designing for debuggability and observability from day one, not bolting it on later. Core remit includes scalable multi-environment Terraform, secrets management, gradual deployment practices (blue/green), and the ability to spin up full environment copies for testing. An AI/multi-agent …/Golang NoSQL What they're looking for Production experience with Terraform, Helm/Kubernetes, AWS networking, and debugging multi-service systems Observability tooling, secrets management, and authentication services in real production environments Comfortable operating in a distributed, multi-user system with a strong sense ...

technical stakeholders DESIRABLE QUALIFICATIONS AND EXPERIENCE Experience in healthcare IT, or familiarity with HL7, FHIR, or DICOM standards. Exposure to identity and access management (e.g. Keycloak, OAuth2, SSO). Experience with secrets management (e.g. Vault, AWS Secrets Manager). Experience working with or building internal developer ...

Port, Humanitec, service catalogue, golden paths Policy-as-code: Kyverno, OPA/Gatekeeper, Checkov, Sentinel Kubernetes ecosystem: Helm, Kustomize, Cilium, Calico, Istio, Karpenter, External Secrets Observability: Prometheus, Grafana, Datadog, AppDynamics, OpenTelemetry, Splunk Security: IAM, RBAC, SSO, secrets management, network policy, vulnerability scanning Reliability: SLOs, SLIs, incident management ...

scheduling tools Experience with Atlassian tools (e.g. Jira, Confluence) Bonus Skills Experience with Artifactory, SonarQube VMware (vSphere), SAN environments Security best practices (secrets management, vulnerability scanning) Security Requirement SC clearance (or willingness/eligibility to obtain) is required. ...

standards, guardrails, and design patterns that guide implementation across endpoints, cloud platforms, applications, and collaboration tools. Define policy and control requirements for encryption, key management, and secrets management in partnership with Cloud, Infrastructure, and Identity teams, ensuring alignment with data protection objectives. Engineering Oversight & Technology Enablement Oversee … Digital, Cloud Services, Infrastructure, and IT teams to ensure data protection controls are designed into platforms, not bolted on post-deployment. Incident Support & Risk Management Partner with Security Operations and Incident Response teams to support detection, investigation, and response to data protection incidents and policy violations. Ensure data protection ...

with monitoring and observability tooling such as Prometheus and Grafana. Knowledge of data and streaming technologies including Kafka, MongoDB, MySQL, and PostgreSQL, plus PKI, secrets management, and IAM. Excellent communication skills. Nice to have: Puppet, KeyCloak, Vault, and experience supporting microservice architectures. Immediate availability. Hays Specialist Recruitment Limited ...

with at least one major MLOps toolset and awareness of alternatives: MLflow, Kubeflow, SageMaker Pipelines, Airflow, BentoML, KServe, Seldon. Deep understanding of model lifecycle management (feature engineering->training → registry → deployment → monitoring). Experience implementing or supporting LLMOps pipelines, including: prompt versioning, evaluation metrics, automation frameworks. Deep understanding … with CloudWatch, SageMaker Model Monitor, Prometheus/Grafana. Strong foundation in Python and cloud-native development patterns. Solid understanding of security best practices, IAM, secrets management, and artifact governance. Nice to have: Experience with vector databases, RAG pipelines, or multi-agent AI systems. Exposure to DevOps and infrastructure ...

balancers, VPNs, firewalls) Experience managing production databases (PostgreSQL, MySQL, NoSQL) and storage Scripting and automation using Python and/or Bash Security best practices, secrets management, and vulnerability scanning Experience 4–7 years in platform, infrastructure, or DevOps engineering Startup or high-growth environment experience strongly preferred Proven ...

infrastructure Own IAM strategy and implementation: design and enforce identity, access, and permissions models that are secure, scalable, and practical Design and operate key management and custody security controls such as HSMs, secrets management, and secure key handling for trading operations Harden CI/CD pipelines (GitLab … secure the software delivery process Configure and operate corporate security tooling (endpoint protection, MDM/Jamf, DLP, identity management) Respond to security incidents: triage, investigate, contain, remediate Conduct security assessments of infrastructure and applications Automate security operations: detection, alerting, and response Work with Infrastructure to embed security into cloud ...

Performance: Data modeling, SQL/NoSQL databases, caching strategies, and performance optimization in latency‐sensitive systems. Security: Enterprise security patterns; authentication protocols, mutual TLS, secrets management, and certificate rotation. Domain Knowledge: Equities, post‐trade, or financial services experience; trade lifecycle concepts, asset servicing, position management, reconciliation … help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. ...

Performance: Data modeling, SQL/NoSQL databases, caching strategies, and performance optimization in latency‐sensitive systems. Security: Enterprise security patterns; authentication protocols, mutual TLS, secrets management, and certificate rotation. Domain Knowledge: Equities, post‐trade, or financial services experience; trade lifecycle concepts, asset servicing, position management, reconciliation … help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. ...

cloud infrastructure roles. Terraform and Infrastructure as Code best practices. Jenkins-based CI/CD pipeline design, build, and optimisation. Observability, monitoring, alerting, incident management, and production operations. Kubernetes, Helm, networking, ingress, RBAC, secrets management, and scalable deployment patterns. Automation using Bash, Python, Java, or similar languages. ...

pipelines across backend, frontend, and data services Establish company-wide observability — logging, metrics, tracing, alerting, and on-call culture Take ownership of cloud cost management, optimising spend without compromising performance Champion operational excellence across the engineering org What You'll Bring Technical Cloud & IaC: Azure (AWS a bonus), Terraform …/Kubernetes, Docker, GitHub Actions Observability: Hands-on experience with logging, metrics, and distributed tracing frameworks Security: Secrets management, security scanning, and infrastructure hardening best practices Networking: VPCs, DNS, load balancers, VPNs, firewalls — you know your way around Data: Provisioning and scaling production-grade PostgreSQL, MySQL, NoSQL ...

mentoring others and driving improvements across CI/CD, observability, and security.Role & Responsibilities Design, build, and manage Azure infrastructure using Terraform, including modules, state management, and pipelines Develop and maintain CI/CD workflows (GitHub Actions, Azure DevOps or similar) Improve platform reliability, observability, and security across environments Take … communication skills and experience working collaboratively with engineering teams Desirable Azure certifications (AZ-400, AZ-104) Experience with policy-as-code (OPA, Sentinel) and secrets management ...

unit testing & integration testing Code quality gates & peer review discipline Secure coding practices Frontend Engineering TypeScript React Next.js Modern frontend patterns (hooks, state management, server/client data fetching) Robust API integration & error handling Identity & Security Architecture Authentication & authorisation design SSO flows OAuth2 & OpenID Connect JWT best practices (signing … Code (Terraform, Bicep or similar) DevOps & Delivery Advanced CI/CD pipelines (Azure DevOps, GitHub Actions) Build, test & release automation Secure pipeline design & secrets management Environment promotion strategies AI-Enabled Engineering AI-assisted development workflows (Copilot, Claude Code or similar) Advanced prompting for engineering tasks Agent-based ...

DevOps/GitHub Actions) Building and managing infrastructure using Terraform (including reusable modules) Supporting microservices architecture with a focus on availability and monitoring Implementing secrets management and secure configuration practices Automating build, test, and deployment workflows Writing scripts and tooling (PowerShell, Bash, Azure CLI) to improve efficiency Contributing ...

DevOps/GitHub Actions) Building and managing infrastructure using Terraform (including reusable modules) Supporting microservices architecture with a focus on availability and monitoring Implementing secrets management and secure configuration practices Automating build, test, and deployment workflows Writing scripts and tooling (PowerShell, Bash, Azure CLI) to improve efficiency Contributing ...

control Implement data quality checks and reconciliations at all steps in the process Collaborate with platform/infra teams on security, access controls, and secrets management Required Qualifications: 5+ years of experience in data engineering, analytics engineering, or backend engineering with significant data pipeline ownership Demonstrated past success … stakeholder management heavy data role Excellent communication skills, able to translate technical knowledge to non-technical colleagues Hands-on experience building and operating production workflows in Apache Airflow Hands-on experience delivering production-grade transformations in dbt, including tests and documentation Strong SQL skills and experience working across multiple ...

control Implement data quality checks and reconciliations at all steps in the process Collaborate with platform/infra teams on security, access controls, and secrets management Required Qualifications: 5+ years of experience in data engineering, analytics engineering, or backend engineering with significant data pipeline ownership Demonstrated past success … stakeholder management heavy data role Excellent communication skills, able to translate technical knowledge to non-technical colleagues Hands-on experience building and operating production workflows in Apache Airflow Hands-on experience delivering production-grade transformations in dbt, including tests and documentation Strong SQL skills and experience working across multiple ...