Jobs via Dice ยท 6 hours ago
Associate Director Vault Engineering (Secrets Management)
Tampa, FL
Full-time
Hybrid
Lead/Staff, Director/Executive
8+ years expDTCC is a premier post-trade market infrastructure for the global financial services industry, committed to innovation and employee growth. The Associate Director, Vault Engineering will lead the strategy and operations of enterprise secret management, focusing on the HashiCorp Vault platform and collaborating with various teams to ensure secure engineering practices.
Computer Software
Responsibilities
Own platform strategy and roadmap for enterprise secrets management (Vault or equivalent), including multi-region architecture, HA/DR, performance replication, and lifecycle management
Establish SLOs/SLA for availability, latency, and reliability; implement observability, capacity planning, performance tuning, and cost controls for the service
Integrate secrets into SDLC and CI/CD (GitLab/Jenkins/Actions) and IaC (Terraform), standardizing policy-as-code, access controls, and automated secret/cert rotation across apps and pipelines
Partner with Security Architecture, Cloud Platform, and DevOps to enforce IAM protocols, zero-trust patterns, and strong RBAC aligned to regulatory requirements (e.g., SOX, PCI, NIST)
Lead major incidents impacting the platform; drive root-cause analyses, corrective actions, and post-mortems; report resilience and risk metrics in service reviews
Governance & audit readiness: define controls, evidence collection, and runbooks; ensure compliance with data protection, key management, and retention policies
Team leadership & talent development: hire, onboard, mentor, and set performance goals; foster a culture of engineering excellence, reliability, and customer centricity
Stakeholder management & communication: communicate roadmaps, changes, and service health to senior partners; manage vendor relationships and licensing/renewals
Continuous improvement: evaluate new capabilities (e.g., namespaces, HSM, transit encryption, dynamic secrets) and lead platform upgrades with minimal business disruption
Qualification
Required
Minimum of 8 years of related experience
Bachelor's degree preferred and/or equivalent experience
8+ years in infrastructure/platform/security engineering; 3+ years leading engineers or SREs in production environments
Proven ownership of Vault (or comparable secret management platform) at enterprise scale across on-prem and cloud
Strong experience with CI/CD, IaC (Terraform), and automation using Python, Groovy, or Java
Deep knowledge of AWS and familiarity with Azure/Google Cloud Platform; Kubernetes operations and secure workload patterns
Demonstrated experience in regulated industries (finance preferred): controls definition, audit evidence, and compliance alignment
Incident management leadership; ability to run major incidents and drive post-incident improvements
Preferred
Certifications: HashiCorp Vault, Cloud (AWS/Google/Azure) Certification, CKA/CKAD, CISSP (or equivalent)
PKI, encryption, certificate lifecycle (ACME/CA), HSM integration, and key management practices
Familiarity with enterprise risk/control frameworks
Benefits
Competitive compensation, including base pay and annual incentive
Comprehensive health and life insurance and well-being benefits, based on location
Pension / Retirement benefits
Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
Company
Jobs via Dice
Welcome to Jobs via Dice, the go-to destination for discovering the tech jobs you want.
0-1 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase