CrawlJobs Logo

IAM Secrets Management Senior Engineer

India, Bangalore · Job Posted January 15, 2026
Apply Position
Job Link Share

Job Description

This role has been designed as ‘Hybrid’ with an expectation that you will work on average 2 days per week from an HPE office. You will play a key role in designing, deploying, and managing enterprise-wide secrets management solutions — with a primary focus on HashiCorp Vault. You will work closely with Cybersecurity Architects, IAM, PAM, and DevSecOps teams to deliver secure, scalable, and automated credential management across HPE’s hybrid infrastructure. You will serve as a technical SME and hands-on implementer, ensuring seamless integration of secrets management with privileged access and identity platforms, while strengthening the company’s overall security posture.

Job Responsibility

  • Deploy, configure, and manage HashiCorp Vault Enterprise clusters, including replication, DR, namespaces, secrets engines, and authentication methods
  • Implement dynamic and static secrets, short-lived credentials, and automated rotation for accounts, APIs, and services
  • Integrate secrets management with PAM platforms (e.g., CyberArk, BeyondTrust) and CI/CD pipelines (Jenkins, GitHub, GitLab, Azure DevOps)
  • Build and maintain Vault policies, AppRoles, OIDC/JWT integrations, and RBAC models
  • Automate secrets onboarding and lifecycle management using APIs, Terraform, and scripting languages (Python, PowerShell, Bash)
  • Ensure secure integration of Vault with cloud workloads (AWS, Azure, GCP) and container platforms (Kubernetes, Docker)
  • Support migration from legacy key stores or password vaults to centralized secrets management platforms
  • Maintain secure configurations, audit logging, and event forwarding to SIEM/SOAR systems
  • Ensure Vault operational health, monitoring, and performance tuning
  • Perform upgrades, patching, and disaster recovery operations for secrets management platforms
  • Troubleshoot authentication, access, and vault replication issues
  • Enforce least-privilege access, policy-based control, and segregation of duties for secrets and credentials
  • Maintain compliance with corporate and regulatory standards (SOX, FedRAMP, ISO 27001, NIST 800-53)
  • Partner with cybersecurity and audit teams to ensure effective logging, monitoring, and attestation of secrets management activities
  • Conduct periodic reviews of Vault policies, ACLs, and access models to ensure continuous compliance
  • Collaborate with IAM, PAM, and DevSecOps teams to align secrets management with enterprise identity strategy
  • Identify and implement automation and efficiency improvements in secrets management and PAM processes
  • Contribute to engineering documentation, knowledge articles, and operational runbooks
  • Support training and knowledge transfer to operations and development teams

Requirements

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of experience in IT or cybersecurity, with 6+ years focused on secrets management, PAM
  • Hands-on experience with HashiCorp Vault Enterprise, including configuration, replication, DR, policies, and secrets engines
  • Experience integrating Vault with PAM tools (CyberArk, BeyondTrust) and DevOps toolchains (Jenkins, GitHub, GitLab, Azure DevOps, Kubernetes)
  • Strong scripting and automation skills (Python, PowerShell, Bash, Terraform, REST APIs)
  • Experience with cloud identity and secrets services (AWS Secrets Manager, Azure Key Vault, GCP Secret Manager)
  • Working knowledge of authentication standards (OIDC, JWT, LDAP, Kerberos, SAML, OAuth2)
  • Experience implementing Zero Trust and Just-in-Time access models
  • Understanding of security compliance frameworks (SOX, FedRAMP, ISO 27001, NIST 800-53)
  • Preferred certifications: HashiCorp Certified Vault Associate, CyberArk Defender/Sentry, CISSP, or equivalent

What we offer

  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

IAM Secrets Management Senior Engineer

8 matching positions

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...
Location
Location
United States , New York
Salary
Salary:
158000.00 - 279000.00 USD / Year
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem
  • Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues
  • Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders
  • Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management
  • Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms
  • Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
  • working knowledge of Azure services such as Function Apps and Logic Apps
  • Experience in onboarding and managing enterprise applications in Azure Entra ID
  • Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications
  • Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE
Job Responsibility
Job Responsibility
  • Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions
  • Drive automation across IAM to streamline administration and deliver a smoother user experience
  • Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC)
  • Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce
  • Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives
  • Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities
  • Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them
What we offer
What we offer
  • health insurance
  • equity awards
  • life insurance
  • disability benefits
  • parental leave
  • wellness benefits
  • paid time off
  • global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • commuter
  • Fulltime
Read More
Arrow Right

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...
Location
Location
United States , Boston
Salary
Salary:
158000.00 - 279000.00 USD / Year
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem.
  • Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues.
  • Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders.
  • Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management.
  • Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms.
  • Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
  • working knowledge of Azure services such as Function Apps and Logic Apps.
  • Experience in onboarding and managing enterprise applications in Azure Entra ID.
  • Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications.
  • Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE.
Job Responsibility
Job Responsibility
  • Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions.
  • Drive automation across IAM to streamline administration and deliver a smoother user experience.
  • Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC).
  • Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce.
  • Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives.
  • Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities.
  • Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them.
What we offer
What we offer
  • Health insurance
  • equity awards
  • life insurance
  • disability benefits
  • parental leave
  • wellness benefits
  • paid time off
  • global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • life
  • Fulltime
Read More
Arrow Right

Senior Engineer, Software Engineering

Senior Software Engineer – EHR SaaS Modernization & Maintenance; This position i...
Location
Location
United States , Peachtree Corners, GA
Salary
Salary:
129000.00 - 193000.00 USD / Year
resmed.com Logo
ResMed
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Engineering, or equivalent practical experience
  • 8+ years of experience in software design and development, including Java, Spring MVC, and Microservices architecture
  • Strong background in AWS cloud development, including S3, EC2, RDS, Lambda, CloudFront, Athena, EKS, Route53, IAM, Secrets Manager, and Redis (Elasticache)
  • Hands-on experience with SQL Server, PostgreSQL, or other RDBMS technologies
  • Proven ability to design and implement CI/CD pipelines using GitHub or similar tools
  • Demonstrated expertise in system reliability engineering, observability, and monitoring
  • Proficiency in cloud cost optimization and performance tuning
  • Familiarity with AI-assisted development and agentic AI integrations to improve software delivery velocity
  • Strong problem-solving, analytical, and communication skills
Job Responsibility
Job Responsibility
  • Design, develop, and maintain enterprise-grade software components and services, ensuring adherence to architectural and coding standards
  • Lead modernization initiatives including migrating on-prem or monolithic applications to AWS-native microservices
  • Architect and optimize solutions leveraging AWS services such as S3, EC2, RDS, CloudFront, Lambda, Athena, EKS, Route53, ElastiCache (Redis), and IAM
  • Implement CI/CD pipelines and environment management using GitHub Actions, AWS Secrets Manager, and infrastructure-as-code principles
  • Drive system reliability engineering (SRE) practices, ensuring high availability, scalability, and observability using Datadog, Splunk, or equivalent APM tools
  • Apply AI-assisted development tools (e.g., GitHub Copilot, Augment, MCP servers, and Agentic AI frameworks) to enhance productivity and code quality
  • Collaborate with architects and engineering leads to design secure, efficient, and cost-optimized cloud architectures
  • Troubleshoot complex production issues and guide root cause analysis for service reliability and performance
  • Participate in code reviews, mentor junior engineers, and contribute to technical standards and best practices
  • Work closely with product and domain experts to ensure EHR/eMAR system enhancements meet healthcare compliance, interoperability (FHIR/HL7), and usability needs
What we offer
What we offer
  • comprehensive medical, vision, dental, and life, AD&D, short-term and long-term disability insurance
  • sleep care management
  • Health Savings Account (HSA)
  • Flexible Spending Account (FSA)
  • commuter benefits
  • 401(k)
  • Employee Stock Purchase Plan (ESPP)
  • Employee Assistance Program (EAP)
  • tuition assistance
  • Flexible Time Off (FTO) for salaried employees
  • Fulltime
Read More
Arrow Right
New

Senior Devops Engineer - VOIS

We are seeking a skilled Cloud & DevOps Engineer to manage and enhance a cloud p...
Location
Location
Egypt , Giza
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3-6 years of Experience
  • Experienced in Google Cloud Platform (GCP) with hands-on delivery experience
  • Proficient in managing Kubernetes platforms in production environments
  • Skilled in Terraform and Infrastructure as Code practices
  • Strong background in Linux administration and troubleshooting
  • Familiar with Vault or similar secrets management platforms
  • Experienced in building and maintaining CI/CD pipelines
  • Knowledgeable in monitoring and observability tools such as Prometheus, Grafana, ELK, or similar
  • Comfortable supporting both development and production environments
  • Strong understanding of networking, system reliability, and cloud security
Job Responsibility
Job Responsibility
  • Manage, maintain, and optimise cloud infrastructure on GCP
  • Design, deploy, and support Kubernetes clusters and containerised applications
  • Build and enhance Infrastructure as Code using Terraform
  • Develop, maintain, and optimise CI/CD pipelines for application and infrastructure delivery
  • Administer and support Linux-based systems across cloud environments
  • Implement secure secrets management and access controls using Vault
  • Build and improve monitoring, logging, alerting, and observability solutions
  • Provide operational support across development, staging, and production environments
  • Troubleshoot infrastructure, deployment, networking, and platform issues
  • Collaborate with engineering, security, and operations teams to enhance automation, security, and reliability
What we offer
What we offer
  • Opportunity to work on large-scale, modern cloud infrastructure
  • Exposure to advanced DevOps, automation, and cloud-native technologies
  • Collaborative environment focused on innovation and continuous improvement
  • Opportunities to develop expertise in platform engineering and cloud security
  • A supportive culture that encourages learning and knowledge sharing
  • Fulltime
Read More
Arrow Right
New

Senior Devopscloud Engineer

We are seeking a Senior DevOps/Cloud Engineer to design, build, and support high...
Location
Location
Canada , Toronto
Salary
Salary:
567.28 - 602.64 USD / Day
https://www.randstad.com Logo
Randstad
Expiration Date
August 02, 2026
Flip Icon
Requirements
Requirements
  • Cloud Expertise: Extensive experience managing AWS infrastructure (VPC, EKS, RDS, etc.) and implementing security controls
  • Infrastructure as Code (IaC): Mastery of Terraform for configuration and management, including drift detection and policy-as-code (Sentinel/OPA)
  • Configuration Management: Proven ability to author Ansible playbooks, roles, and collections for large-scale environments
  • Container Orchestration: Direct experience operating and hardening Red Hat OpenShift Service on AWS (ROSA)
  • CI/CD Mastery: Solid experience designing and maintaining pipelines for infrastructure and application delivery
  • experience with GitOps/ArgoCD
  • Scripting & Linux: Proficiency in scripting languages (Python, Bash, PHP, Java, JavaScript) and experience maintaining Linux environments (CentOS, Ubuntu, CoreOS)
  • Security Standards: Strong understanding of security architecture, vulnerability management, and industry-standard security best practices
Job Responsibility
Job Responsibility
  • Design, provision, and manage comprehensive AWS infrastructure, including VPCs, subnets, security groups, IAM policies, EC2, ECS, EKS, RDS, S3, Route 53, and CloudFront
  • Architect multi-account AWS environments, adhering to the AWS Well-Architected Framework principles
  • Develop, maintain, and refactor Terraform modules and configurations to ensure standardized, repeatable cloud infrastructure
  • Author and maintain Ansible playbooks, roles, and collections to automate server configuration, application deployment, and compliance enforcement
  • Administer Red Hat OpenShift Service on AWS (ROSA), including handling upgrades, node scaling, and add-on management
  • Design and maintain CI/CD pipelines using GitLab CI or Azure DevOps to streamline infrastructure and application delivery
  • Implement GitOps workflows using ArgoCD to support declarative, auditable deployments
  • Execute AWS cost optimization strategies, including managing Reserved Instances, Savings Plans, and rightsizing initiatives
  • Implement security safeguards, including CloudTrail, Config, GuardDuty, Security Hub, and AWS Organizations SCPs to protect against unauthorized access
  • Embed security controls throughout the infrastructure lifecycle, including secrets management via AWS Secrets Manager and enforcing least-privilege access
What we offer
What we offer
  • High-Impact Architecture: Influence the foundational cloud strategy and digital product infrastructure
  • Modern Tooling: Utilize a comprehensive stack including Terraform, Ansible, OpenShift, and ArgoCD
  • Professional Growth: Tackle complex challenges in incident response, cost optimization, and infrastructure scaling within a professional team environment
  • Fulltime
Read More
Arrow Right

Senior DevOps Engineer

Our Client is a global leader in corporate brand protection and domain managemen...
Location
Location
Salary
Salary:
Not provided
n-ix.com Logo
N-iX
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of commercial DevOps / SRE / infrastructure engineering experience
  • Strong hands-on experience designing and maintaining CI/CD pipelines, with practical Jenkins expertise
  • Deep, hands-on experience with AWS (compute, networking, IAM, deployment, and cost-aware architecture)
  • Experience deploying, scaling, and operating PHP (Laravel) applications in production
  • Infrastructure as Code expertise (Terraform, CloudFormation, or equivalent)
  • Containerization and orchestration (Docker plus ECS / EKS / Kubernetes)
  • Strong observability skills — metrics, logging, and tracing (e.g. Prometheus / Grafana, CloudWatch, ELK, Datadog)
  • Solid scripting/automation skills (Bash, Python, or similar)
  • Working knowledge of MySQL and RabbitMQ in production environments (scaling, monitoring, tuning)
  • Experience migrating manual / on-prem deployments to automated cloud-based pipelines
Job Responsibility
Job Responsibility
  • Adapt and extend the existing Jenkins CI/CD pipeline to deploy the consolidated PHP / Nuxt.js portal into AWS
  • Lead the transition from manual on-prem deployment of the portal and legacy systems toward automated, repeatable cloud delivery
  • Design and implement scalability for the PHP / Laravel application — autoscaling, load handling, performance under growth
  • Build out observability — monitoring, logging, tracing, alerting — to give the team clear visibility into system health
  • Define and maintain infrastructure as code for reproducible, version-controlled environments
  • Collaborate with the engineering team on deployment, environment, and release strategy
  • Troubleshoot production and infrastructure issues and contribute to root-cause analysis
  • Apply security and operational best practices across pipelines and infrastructure
  • Engage with Client engineering counterparts in US / UK / Brazil on integration points and delivery milestones
  • Participate in Agile ceremonies (stand-ups, planning, retros, demos)
What we offer
What we offer
  • Flexible working format - remote, office-based or flexible
  • A competitive salary and good compensation package
  • Personalized career growth
  • Professional development tools (mentorship program, tech talks and trainings, centers of excellence, and more)
  • Active tech communities with regular knowledge sharing
  • Education reimbursement
  • Memorable anniversary presents
  • Corporate events and team buildings
  • Other location-specific benefits
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We are looking for a Senior Security Engineer – PAM to join the Global Informati...
Location
Location
United States , Burbank
Salary
Salary:
90.00 - 97.00 USD / Hour
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • Medical coverage
  • Dental coverage
  • Vision coverage
  • 401(k) with company match
  • Short-term disability
  • Life insurance with AD&D
  • Fulltime
Read More
Arrow Right

Senior DevOps Engineer

We are looking for a highly skilled Senior DevOps Engineer to design, implement,...
Location
Location
India , Ahmedabad
Salary
Salary:
Not provided
codezeros.com Logo
Codezeros
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in DevOps/SRE roles
  • Strong hands-on experience with both AWS and Azure
  • Expertise in Linux system administration
  • Proficiency in scripting (Bash, Python, or Go)
  • AWS Services: EC2, S3, RDS, Lambda, VPC, IAM
  • Azure Services: VM, Blob Storage, Azure Functions, VNet, Azure AD
  • CI/CD pipelines and automation
  • Infrastructure as Code (Terraform preferred)
  • Containerization and orchestration (Docker + Kubernetes)
  • Networking fundamentals (DNS, TCP/IP, Load Balancing)
Job Responsibility
Job Responsibility
  • Design and manage scalable, fault-tolerant systems on AWS and Azure
  • Optimize cloud cost, performance, and security
  • Implement high availability, disaster recovery, and backup strategies
  • Build and maintain CI/CD pipelines using tools like (Jenkins, Github Actions, Azure DevOps)
  • Automate build, test, and deployment processes
  • Develop and manage infrastructure using (Terraform, AWS CloudFormation, Azure Resource Manager)
  • Ensure version-controlled and reusable infrastructure modules
  • Manage containerized workloads using (Docker, Kubernets)
  • Deploy and manage clusters on (AWS EKS, Azure AKS)
  • Implement observability solutions using (Prometheus, Grafana, ELK Stack, Cloud-native tools (CloudWatch, Azure Monitor))
  • Fulltime
Read More
Arrow Right