×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cloud Computing

Associate Director Vault Engineering; Secrets Management

Job in Tampa, Hillsborough County, Florida, 33646, USA
Listing for: DTCC
Full Time position
Listed on 2026-01-16
Job specializations:
  • IT/Tech
    Systems Engineer, Cloud Computing
Job Description & How to Apply Below
Position: Associate Director Vault Engineering (Secrets Management)

Pay and Benefits

  • Competitive compensation, including base pay and annual incentive
  • Comprehensive health and life insurance and well-being benefits, based on location
  • Pension / Retirement benefits
  • Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being.
  • DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).
The Impact you will have in this role

Being a member of CISO team, The Associate Director, Vault Engineering leads the strategy, delivery, and operations of enterprise secret management across on premises and multi cloud environments. This role owns the Hashi Corp Vault platform (or equivalent), drives automation and governance at scale, and partners with Security, Cloud, Application and Dev Ops to enable secure‑by‑default engineering in a regulated setting.

The leader will build and mentor a high performing team, establish service objectives, and ensure the platform meets availability, resilience, and compliance expectations.

Your Primary Responsibilities
  • Own platform strategy and roadmap for enterprise secrets management (Vault or equivalent), including multi‑region architecture,
    HA/DR
    , performance replication, and lifecycle management.
  • Establish SLOs/SLA for availability, latency, and reliability; implement observability, capacity planning, performance tuning, and cost controls for the service.
  • Integrate secrets into SDLC and CI/CD (Git Lab/Jenkins/Actions) and IaC (Terraform), standardizing policy‑as‑code
    , access controls, and automated secret/cert rotation across apps and pipelines.
  • Partner with Security Architecture, Cloud Platform, and Dev Ops to enforce IAM protocols
    , zero‑trust patterns, and strong RBAC aligned to regulatory requirements (e.g., SOX, PCI, NIST).
  • Lead major incidents impacting the platform; drive root‑cause analyses, corrective actions, and post‑mortems; report resilience and risk metrics in service reviews.
  • Governance & audit readiness
    : define controls, evidence collection, and runbooks; ensure compliance with data protection, key management, and retention policies.
  • Team leadership & talent development
    : hire, onboard, mentor, and set performance goals; foster a culture of engineering excellence, reliability, and customer centricity.
  • Stakeholder management & communication
    : communicate roadmaps, changes, and service health to senior partners; manage vendor relationships and licensing/renewals.
  • Continuous improvement
    : evaluate new capabilities (e.g., name spaces, HSM, transit encryption, dynamic secrets) and lead platform upgrades with minimal business disruption.
Core Technical Scope (Platform Expertise)
  • Vault platform
    : policy design, auth methods (LDAP/Kubernetes/AWS IAM), secret engines (KV, PKI, LDAP, Database), seal/unseal, performance & disaster recovery replication, multi‑cluster patterns.
  • Automation & integration
    :
    Terraform modules, CI/CD integration, sentinelolicy‑as‑code, API usage; scripting with Python, Groovy, Java for provisioning, rotation, and audits.
  • Cloud & containers
    : AWS (preferred) plus Azure/Google Cloud Platform familiarity;
    Kubernetes/Open Shift fundamentals; ingress/sidecar patterns for secret injection; service mesh integrations where applicable.
  • Observability & SRE
    : supervising (Promethe Grafana/Splunk), alerting, capacity and scalability planning; MTTR/MTTD improvement.
Qualifications
  • Minimum of 8 years of related experience
  • Bachelor’s degree preferred and/or equivalent experience
Talents Needed for Success
  • 8 years in infrastructure/platform/security engineering; 3 years leading engineers or SREs in production environments.
  • Proven ownership of Vault (or comparable secret management platform) at enterprise scale across on‑prem and cloud.
  • Strong experience with CI/CD
    , IaC (Terraform), and automation using Python, Groovy, or Java
    .
  • Deep knowledge of AWS and familiarity with Azure/Google Cloud Platform;
    Kubernetes operations and secure workload patterns.
  • Demonstrated experience in regulated industries (finance preferred): controls definition, audit evidence, and compliance alignment.
  • Incident…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search