Senior Security Specialist – Secrets Management (HashiCorp Vault Enterprise)

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field; Master's degree preferred.
• 5+ years of experience in cybersecurity, with at least 3 years focused on secrets management solutions.
• Proven hands-on experience with HashiCorp Vault Enterprise, including deployment, configuration, policy management, and integration with various systems.
• Strong understanding of cryptographic principles, key management, and secure communication protocols (TLS/SSL).
• Experience with cloud platforms (AWS, Azure, GCP) and integrating Vault with cloud-native services.
• Proficiency in scripting languages (e.g., Python, Bash) for automation and integration tasks.
• Familiarity with CI/CD tools (e.g., Jenkins, GitLab CI, Azure DevOps) and their integration with secrets management.
• Knowledge of industry security standards and frameworks (e.g., NIST, ISO 27001).
• Excellent analytical, problem-solving, and communication skills.

Nice To Haves

• Relevant certifications (e.g., HashiCorp Certified: Vault Associate, CISSP, CISM) are a plus.

Responsibilities

• Lead the design, implementation, and ongoing management of HashiCorp Vault Enterprise for secrets management across various environments (on-premises, cloud, hybrid).
• Develop and enforce best practices, policies, and procedures for secrets lifecycle management, including creation, rotation, revocation, and auditing.
• Integrate Vault with existing and new applications, services, and infrastructure components (e.g., CI/CD pipelines, identity providers, cloud platforms).
• Collaborate with development, operations, and security teams to ensure secure and efficient secrets access for applications and users.
• Perform security assessments, vulnerability remediation, and continuous improvement of the secrets management platform.
• Provide subject matter expertise and guidance on secrets management principles, technologies, and risks to various stakeholders.
• Develop and maintain comprehensive documentation, including architecture diagrams, runbooks, and operational procedures.
• Participate in incident response activities related to secrets compromise or unauthorized access.
• Stay current with industry trends, emerging technologies, and security best practices in secrets management.

Benefits

• Our generous benefits program includes medical, dental, vision and life insurance with no premium costs for our employees and their families, and retirement plan plus matching 401k.