Lead IT Security Engineer (Machine Identity & Secrets Management)

DTCCTampa, FL
11hHybrid
Match Resume

About The Position

Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance. Being a member of CISO team, as a Lead Engineer for Machine Identity & Secrets Management, you will own the technical vision, strategy, and execution of DTCC’s enterprise secrets management and machine identity platform, powered by HashiCorp Vault. You will play a critical role in enabling secure-by-default application development by delivering a highly automated, scalable, and resilient Vault platform running on Kubernetes. Your work will directly impact how internal engineering teams authenticate, authorize, and securely access sensitive credentials across DTCC’s technology ecosystem. This role sits at the intersection of security engineering, platform engineering, and DevOps, and is ideal for a hands-on technical leader who enjoys building internal platforms and setting engineering standards at scale.

Requirements

  • Minimum of 6 years of related experience
  • Bachelor's degree preferred and/or equivalent experience
  • Deep hands-on experience with HashiCorp Vault, including: Auth methods, secret engines, policies, namespaces, and HA configurations
  • Strong experience running production workloads on Kubernetes, including security and operational standard methodologies
  • Sophisticated automation and DevOps skills, including: Infrastructure as Code (Terraform strongly preferred) CI/CD pipelines and GitOps-style workflows
  • Strong understanding of machine identity, service-to-service authentication, and zero-trust principles
  • Experience integrating Vault with cloud platforms, Kubernetes workloads, and internal developer platforms
  • Ability to translate security requirements into simple, scalable developer experiences
  • Strong troubleshooting skills across distributed systems
  • Excellent communication skills, with the ability to influence architecture and engineering practices across teams
  • An approach of ownership, reliability, and continuous improvement

Responsibilities

  • Own the technical strategy and roadmap for DTCC’s Machine Identity and Secrets Management platform, with HashiCorp Vault as the core service
  • Serve as the technical authority for Vault architecture, deployment patterns, and operational standard processes
  • Lead the design and implementation of a Kubernetes-based Vault infrastructure, emphasizing high availability, resilience, and disaster recovery
  • Drive automation-first approaches for: Vault deployment and lifecycle management Secret engines, auth methods, and policy management Application onboarding and self-service enablement
  • Design and standardize secure authentication and authorization patterns for applications, services, and workloads (e.g., Kubernetes auth, cloud IAM integrations)
  • Build and maintain Infrastructure as Code (IaC) and CI/CD pipelines to manage Vault environments and configurations
  • Partner closely with application teams, platform teams, and security team collaborators to enable secure consumption of secrets at scale
  • Establish operational excellence, including monitoring, alerting, capacity planning, and incident response for Vault services
  • Mentor and guide engineers on the team, setting a higher standard for engineering quality, security, and automation
  • Contribute to internal documentation, standards, and architectural decision records

Benefits

  • Competitive compensation, including base pay and annual incentive
  • Comprehensive health and life insurance and well-being benefits, based on location
  • Pension / Retirement benefits
  • Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
  • DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Lead IT Security Engineer (Machine Identity & Secrets Management) job opportunities

Information Security Engineer – Identity Management
Faegre Drinker
Faegre Drinker • Indianapolis, IN2d • $95,000 - $105,000
🔥 New JobInformation Security Engineer – Identity Management
Faegre Drinker Biddle & Reath
Faegre Drinker Biddle & Reath • Chicago, IL14h • $95,000 - $105,000
🔥 New JobIT Platform Engineer, Identity & Access Management Engineer
University of Maryland
University of Maryland • College Park, MD1d • Onsite
Lead, Identity & Access Management
Prudential Financial
Prudential Financial • Newark, NJ8d
Lead, Identity & Access Management
Prudential Financial
Prudential Financial • Newark, NJ6d
Senior Identity & Security Engineer
Trility Consulting
Trility Consulting7d • Remote
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service