CrawlJobs Logo

HashiCorp Vault Engineer

https://www.randstad.com Logo

Randstad

Location Icon

Location:
Australia , Melbourne

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Job offer has expired

Job Description:

We are seeking a specialised HashiCorp Vault Engineer to lead the architecture and management of secrets across a high-security multi-cloud environment. This role is critical in ensuring that sensitive data, API keys, and credentials are brandished with the highest level of security and efficiency for a major government project.

Job Responsibility:

  • Design and implement high-tier Vault architectures, including secret engines, authentication methods, and audit logging
  • Develop standardised patterns for application onboarding, ensuring teams can consume secrets securely through automated workflows
  • Perform deep-dive root cause analysis on critical or recurring issues, working with OEMs to resolve complex technical bottlenecks
  • Fine-tune Vault policies and access controls (RBAC) to ensure a "least-privilege" security posture across all environments
  • Manage day-to-day security tasks, including incident escalation support and the deployment of efficiency-driven platform enhancements
  • Partner with stakeholders and application owners to plan long-term security roadmaps and integrate Vault into enterprise-wide delivery pipelines

Requirements:

  • MUST hold a current AGSVA Baseline, NV1, or NV2 security clearance
  • 5–10+ years of hands-on experience specifically delivering HashiCorp Vault services in cloud-native environments
  • Proven experience developing Vault integration patterns, secret policies, and automation scripts
  • Expert-level proficiency in Terraform for managing Vault clusters and cloud infrastructure
  • Deep understanding of integrating Vault into automated pipelines, containerisation (Docker/Kubernetes), and orchestration
  • Strong functional knowledge of AWS and Azure IaaS services and their associated security fundamentals
  • A solid grasp of ITIL processes (Incident, Change, and Problem Management)

Nice to have:

  • HashiCorp Certified: Vault Associate/Professional, or AWS/Azure DevOps certifications
  • Prior success working within the Australian Government or other highly regulated environments with stringent security requirements
  • Strong ability to perform root cause analysis and translate findings into technical improvements

Additional Information:

Job Posted:
April 22, 2026

Expiration:
April 22, 2026

Icon
Randstad - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for HashiCorp Vault Engineer

Security Engineering Lead

Citi's Application, Platform and Engineering team is looking for a Security Engi...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bring your deep-dive application security engineering expertise from building production systems
  • thrive in a results-driven environment, where flexibility fuels impact
  • be a game-changer, ready to step beyond your designated role
  • love the synergy of pair programming
  • seize the opportunity to secure AI applications at scale
  • have a relentless passion to learn more about AI security, LLM attacks, and bringing your knowledge to shape Citi's secure AI future
  • proven track record of architecting and building secure, large-scale production applications and business-facing platforms from the ground up
  • hands-on experience finding and exploiting vulnerabilities, conducting red team exercises, and thinking like an attacker to strengthen defenses
  • experience building security tools and secure production systems with Go, Python, JavaScript
  • deep experience with HashiCorp Vault for enterprise-scale secrets management
Job Responsibility
Job Responsibility
  • Build secure AI products
  • conduct penetration testing and vulnerability research
  • design automated security solutions
  • identify and mitigate AI-specific vulnerabilities
  • lead security practices in development lifecycles
  • mentor engineers on secure coding practices.
What we offer
What we offer
  • 27 days annual leave plus bank holidays
  • discretional annual performance-related bonus
  • private medical care and life insurance
  • employee assistance program
  • pension plan
  • paid parental leave
  • special discounts for employees, family, and friends
  • Fulltime
Read More
Arrow Right

Senior AI Security Engineer

Senior AI Security Engineer role in Citi's Application, Platform and Engineering...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Production system builder with security focus - proven track record of architecting and building secure, large-scale production applications and business-facing platforms from the ground up
  • Ethical hacking and penetration testing expertise - hands-on experience finding and exploiting vulnerabilities, conducting red team exercises
  • State-of-the-art security engineering with Go, Python, JavaScript
  • HashiCorp Vault mastery - deep experience writing custom plugins, creating secrets engines, implementing dynamic credentials
  • Enterprise authentication & authorization - designing and implementing OAuth, JWT, RBAC, and complex identity systems
  • API security and threat modelling - securing REST/GraphQL APIs, conducting threat assessments
  • AI/ML security and vulnerability research - understanding of LLM vulnerabilities, model security, prompt injection attacks
  • Security automation and tooling – automating manual security processes
  • Cloud-native security - securing containerized applications in Kubernetes, service mesh security
  • Incident response and forensics - experience investigating, analyzing, and responding to security incidents
Job Responsibility
Job Responsibility
  • Build secure AI products from 0-1 - Engineer production-grade, business-facing AI platforms with security built-in from day one
  • Conduct ethical hacking and red team activities - penetration testing, vulnerability research, and attack simulation
  • Design and build security tools and frameworks - Create automated security solutions that scale across fast-paced development cycles
  • Secure novel AI attack surfaces - Identify and mitigate LLM-specific vulnerabilities, prompt injection attacks, and AI model security risks
  • Lead 'shift left' security - Embed security practices throughout rapid development lifecycle while maintaining velocity
  • Mentor security practices - Guide other engineers on secure coding, vulnerability remediation, and security-first thinking
What we offer
What we offer
  • 27 days annual leave (plus bank holidays)
  • Discretional annual performance related bonus
  • Private Medical Care & Life Insurance
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Hybrid working model (up to 2 days working at home per week)
  • Competitive base salary (annually reviewed)
  • Fulltime
Read More
Arrow Right

Information Security Analyst

This is an opportunity to work with Citi’s Global Secrets Management Platforms t...
Location
Location
India , Pune; Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 Years’ experience
  • Bachelor’s in Engineering Degree (Computer Science or Equivalent)
  • trainings/certifications in Cybersecurity will be considered a plus
  • CyberArk, HashiCorp Vault experience will be a big plus
  • Basic experience working with one or more of these scripting languages – Python, Unix Shell, Perl, Go & PowerShell scripting
  • Experience with one or more server operating system like Linux, Windows
  • Experience/basic understanding of CHEF, Ansible, Terraform, CI/CD
  • Experience with one or more cloud providers such as AWS, GCP, AZURE
  • Understanding of containers and associated technologies like Kubernetes/OpenShift
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Provide BAU support for secrets management applications like CyberArk, HashiCorp Vault
  • Collaborate with various internal and external stakeholders/support teams as required to support the application and business needs
  • Work with client applications to provide integration/onboarding guidance
  • Identify security vulnerabilities in the system and implement necessary solutions to remediate the vulnerabilities
  • Strong Automation experience - Identify manual processes that can be smartly automated
  • Ensure security best practice is followed and provide solutions to improve existing infrastructure processes in the company
  • Be involved in the design and subsequent implementation of software and service infrastructure
  • Provide on-call support in rotation as required
  • Gather requirements and provide walkthroughs to businesses on usage of various SDKs and API services available for integration with Secrets/Identity and Access Management applications.
What we offer
What we offer
  • Equal opportunity employer
  • Reasonable accommodation for persons with disabilities
  • Inclusive and diverse workforce
  • Career development opportunities at all stages
  • Based on merit promotions
  • Opportunities for personal development
  • Respect for all employees.
  • Fulltime
Read More
Arrow Right

IAM Secrets Management Senior Engineer

This role has been designed as ‘Hybrid’ with an expectation that you will work o...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of experience in IT or cybersecurity, with 6+ years focused on secrets management, PAM
  • Hands-on experience with HashiCorp Vault Enterprise, including configuration, replication, DR, policies, and secrets engines
  • Experience integrating Vault with PAM tools (CyberArk, BeyondTrust) and DevOps toolchains (Jenkins, GitHub, GitLab, Azure DevOps, Kubernetes)
  • Strong scripting and automation skills (Python, PowerShell, Bash, Terraform, REST APIs)
  • Experience with cloud identity and secrets services (AWS Secrets Manager, Azure Key Vault, GCP Secret Manager)
  • Working knowledge of authentication standards (OIDC, JWT, LDAP, Kerberos, SAML, OAuth2)
  • Experience implementing Zero Trust and Just-in-Time access models
  • Understanding of security compliance frameworks (SOX, FedRAMP, ISO 27001, NIST 800-53)
  • Preferred certifications: HashiCorp Certified Vault Associate, CyberArk Defender/Sentry, CISSP, or equivalent
Job Responsibility
Job Responsibility
  • Deploy, configure, and manage HashiCorp Vault Enterprise clusters, including replication, DR, namespaces, secrets engines, and authentication methods
  • Implement dynamic and static secrets, short-lived credentials, and automated rotation for accounts, APIs, and services
  • Integrate secrets management with PAM platforms (e.g., CyberArk, BeyondTrust) and CI/CD pipelines (Jenkins, GitHub, GitLab, Azure DevOps)
  • Build and maintain Vault policies, AppRoles, OIDC/JWT integrations, and RBAC models
  • Automate secrets onboarding and lifecycle management using APIs, Terraform, and scripting languages (Python, PowerShell, Bash)
  • Ensure secure integration of Vault with cloud workloads (AWS, Azure, GCP) and container platforms (Kubernetes, Docker)
  • Support migration from legacy key stores or password vaults to centralized secrets management platforms
  • Maintain secure configurations, audit logging, and event forwarding to SIEM/SOAR systems
  • Ensure Vault operational health, monitoring, and performance tuning
  • Perform upgrades, patching, and disaster recovery operations for secrets management platforms
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

VP - Cloud Security Reliability Engineer (SRE)

This role sits within the Cloud Security team which is responsible for Private a...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent work experience
  • 6+ years of relevant work experience
  • Highly motivated self-starter with excellent interpersonal and communication skills
  • Certification or formal training in site reliability engineering concepts and practices
  • Prior experience working towards SLIs, SLOs and observability capabilities at a large scale
  • 4+ years experience in Python (preferable) or Java, on large scale systems alongside Linux based scripting languages
  • Experience working on observability, logging and metrics toolsets: Prometheus, Grafana, Splunk, Elk
  • Experience of k8s and container technologies: Docker, Openshift and EKS
  • Experience with public cloud technologies: AWS, GCP or Azure
  • Experience with Secrets products: HashiCorp Vault or CyberArk
Job Responsibility
Job Responsibility
  • Working across Container products and Secrets products, across Public and Private Cloud, as well as Cloud native specific products
  • Architecting and building tools and platforms that provide capabilities for SRE
  • Collaboration with multiple stakeholders and partners across Engineering and Operations as well as partner teams within the wider Citi organisation
  • Actively owning production level incidents till resolution
  • Fulltime
Read More
Arrow Right

Staff Infrastructure Security Engineer

We’re seeking a Staff Infrastructure Security Engineer to architect and operatio...
Location
Location
United States , San Francisco; Bellevue; Sunnyvale; Denver
Salary
Salary:
210000.00 - 265000.00 USD / Year
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience in cloud security, DevOps, or infrastructure engineering
  • Deep, production-grade experience deploying and operating HashiCorp Vault in enterprise environments (Enterprise edition strongly preferred)
  • Expert knowledge of secrets management, cryptography, PKI/X.509 certificate authorities, and trust systems
  • Strong experience with Google Cloud Platform (GCP) and cloud-native IAM models
  • Proven expertise using Infrastructure-as-Code tools (Terraform) to automate security platforms
  • Hands-on experience with Kubernetes and securely integrating secrets into microservices architectures
  • Fluency in at least one programming language (Go or Python preferred) for automation and tooling
  • Strong understanding of network security fundamentals, including segmentation, firewalls, routing, and Zero Trust concepts
Job Responsibility
Job Responsibility
  • Architecting a highly available, disaster-resilient, multi-cluster secrets management platform as the foundation of our Zero Trust strategy
  • Driving Vault from PoC to enterprise-grade production, establishing standards, reliability, and scalability
  • Leading cross-functional alignment with Cloud Engineering, DevOps, and SRE teams on secure secret management workflows embedded into the SDLC
  • Designing and enforcing governance controls to meet internal policies and external compliance requirements (e.g., SOX, ISO 27001)
  • Implementing Policy as Code using Sentinel to automate guardrails and access decisions
  • Engineering Vault infrastructure using Terraform with fully automated, reproducible, and version-controlled deployments
  • Architecting integrations between Vault, identity providers (e.g., Okta), and workload identities (e.g., Kubernetes Service Accounts)
  • Configuring and tuning core Vault secrets engines (KV, Transit, KMIP) and Enterprise features such as performance replication and automated sealing
  • Operationalizing “Vault as a Service” through paved-road onboarding, self-service workflows, and clear developer documentation
  • Building observability across the platform, including monitoring, alerting, audit logging, and usage insights
What we offer
What we offer
  • Industry competitive pay
  • Restricted Stock Units in a fast growing, well-funded technology company
  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
  • Employer contributions to HSA accounts
  • Paid Parental Leave
  • Paid life insurance, short-term and long-term disability
  • Teladoc
  • 401(k) with a 100% match up to 4% of salary
  • Generous paid time off and holiday schedule
  • Cell phone reimbursement
  • Fulltime
Read More
Arrow Right

Staff Infrastructure Security Engineer

Crusoe's mission is to accelerate the abundance of energy and intelligence. We’r...
Location
Location
United States , San Francisco; Bellevue; Sunnyvale; Denver
Salary
Salary:
Not provided
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years (or equivalent) hands-on experience in cloud security, DevOps, or infrastructure engineering
  • Deep expertise and proven track record deploying and managing HashiCorp Vault in an enterprise environment (experience with the Enterprise edition is highly preferred)
  • Expert-level knowledge of Secrets Management, X.509 PKI (Public Key Infrastructure), Certificate Authority Operations, and Cryptography concepts
  • Strong experience with Google Cloud Platform (GCP) and cloud native identity and access management (IAM)
  • Proficiency with Infrastructure as Code (IaC) tools, especially Terraform, for automating the deployment and configuration of Vault and its dependent infrastructure
  • Fluent in at least one programming language (ideally Go or Python)
  • Demonstrable experience with Kubernetes and container security principles, especially integrating secrets into microservices architectures
  • Strong understanding of network security concepts (IP addressing, IP routing, firewalls, segmentation, Zero Trust)
Job Responsibility
Job Responsibility
  • Strategic Architecture & Governance: Architect a highly available, disaster-resilient, and scalable multi-cluster secrets management platform that serves as the foundation for the organization’s Zero Trust strategy
  • Technical Leadership: Drive consensus across Cloud Engineering, DevOps, and SRE teams to define standardized secret management workflows and integrate security patterns into the SDLC
  • Compliance & Governance: Ensure the platform design meets rigorous internal policies and external compliance frameworks (e.g., SOX, ISO 27001)
  • Policy as Code: Design and implement advanced governance controls, including Sentinel Policy as Code, to automate security guardrails and access decisions
  • Platform Engineering & Implementation: Infrastructure as Code (IaC): Lead the engineering of the Vault infrastructure using Terraform, ensuring all deployments are reproducible, version-controlled, and automated
  • Identity Integration: Architect the integration between the secrets platform, Identity Providers (Okta), and workload identities (Kubernetes Service Accounts) to establish robust machine-to-machine authentication
  • Advanced Secrets Capabilities: Configure and tune essential secrets engines (KV, Transit, KMIP) and Enterprise features (Performance Replication, Seal automation) to support diverse engineering use cases
  • Operational Excellence & Developer Enablement: Vault as a Service (VaaS): Operationalize the platform by building self-service mechanisms, distinct "paved road" onboarding procedures, and documentation that allows engineering teams to easily consume security services
  • Observability: Implement comprehensive monitoring, alerting, and audit logging to ensure platform health, provide visibility into usage patterns, and satisfy audit requirements
  • Lifecycle Management: Own the full operational lifecycle of the production environment, including patching, version upgrades, backup/restore procedures, and incident response runbooks
What we offer
What we offer
  • Industry competitive pay
  • Restricted Stock Units in a fast growing, well-funded technology company
  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
  • Employer contributions to HSA accounts
  • Paid Parental Leave
  • Paid life insurance, short-term and long-term disability
  • Teladoc
  • 401(k) with a 100% match up to 4% of salary
  • Generous paid time off and holiday schedule
  • Cell phone reimbursement
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries Tools About Us FAQ Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy