Lead Identity Engineer - Secrets Management

Location: Jersey City, NJ / Dallas, TX / Tampa, FL

Hybrid (3x/week onsite)

Compensation will be commensurate with experience and location; please note that the compensation range listed above is applicable only to candidates for the role in the Jersey City, NJ office.

Glocomms is partnered with a leading financial services firm in search of a highly skilled Lead Identity Engineer with deep expertise in HashiCorp Vault and Identity & Access Management (IAM). This is a critical hire as the firm continues to build out their next-gen Secrets Management infrastructure, and will serve as Lead Engineer on a 5-10 person team. The ideal candidate will have experience supporting the design and implementation of robust secrets management solutions across cloud, on-prem, and hybrid environments within a Zero Trust Architecture framework.

Key Responsibilities:

• Act as the Subject Matter Expert (SME) for secrets management and HashiCorp Vault, leading architecture and implementation initiatives.
• Design and maintain secure, scalable secrets management systems integrated with enterprise IAM and CI/CD pipelines.
• Enforce Zero Trust principles across infrastructure and application layers.
• Automate infrastructure and Vault configurations using Terraform and scripting tools.
• Collaborate with cross-functional teams including DevOps, Security, and Application Engineering to embed secrets management best practices.
• Monitor and troubleshoot secrets infrastructure using observability tools such as Splunk, Grafana, and Elasticsearch.
• Develop and maintain shell scripts for automation and operational efficiency on Linux/Unix systems.
• Participate in Agile/Kanban workflows, contributing to sprint planning, retrospectives, and continuous improvement.

Required Experience:

• Demonstrated hands-on experience as a HashiCorp Vault SME in enterprise environments.
• Strong background in IAM, secrets lifecycle management, and Zero Trust Architecture.
• Proficiency in Linux/Unix administration and shell scripting.
• Experience with Terraform and infrastructure as code practices.
• Familiarity with cloud platforms (AWS, GCP, Azure) and on-prem systems.
• Working knowledge of networking fundamentals, including secure communication protocols.
• Experience with monitoring and logging tools: Splunk, Grafana, Elasticsearch.
• Comfortable working in Agile/Kanban environments.

Preferred Qualifications:

• HashiCorp Vault certification(s) or equivalent practical experience.
• Experience integrating Vault with Kubernetes and cloud-native services.
• Exposure to secure software development and DevSecOps practices.

This is a unique opportunity to join a high-impact team at the forefront of financial cybersecurity, where your expertise will directly influence the security posture of a global enterprise. Interested applications should submit a concise resume with full name and contact information to be considered.

Candidates must be fully authorized to work in the United States and located within commuting distance of Jersey City, Dallas, or Tampa. Unfortunately, visa sponsorship is not available at this time.