Security Specialist Secrets Management (Vault) 100% (f/m/d)

At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth. Let’s shape the future of wealth management together.

YOUR CHALLENGE

• ​Design and implement HashiCorp Vault infrastructure: Plan, deploy, and manage HashiCorp Vault clusters to ensure secure storage and management of sensitive data
• Integrate HashiCorp tools with CI/CD pipelines: Collaborate with development teams to integrate HashiCorp tools, such as Terraform into our CI/CD pipelines
• Partner closely with global engineering and security teams to ensure high availability, resilience, and compliance of Vault infrastructures across hybrid and cloud environments
• Analyze evolving business and security requirements, assessing their technical feasibility, risk implications, and impact on existing systems, enterprise architecture standards, and regulatory obligations
• Contribute proactively to the development of secure, scalable architectures, operational concepts, and standardized engineering processes in alignment with enterprise IT strategies
• Maintain comprehensive, up-to-date technical documentation, including system designs, runbooks, configurations, and incident post-mortems, to ensure transparency and operational continuity
• Lead troubleshooting and root cause analysis for complex technical issues, driving timely resolution while minimizing service disruption
• Provide 2nd and 3rd level engineering support, including participation in an on-call rotation, coordinating with cross-functional teams to resolve critical incidents efficiently
• Drive continuous service improvement by enhancing system reliability, security posture, performance, observability, and automation, with a clear focus on increasing operational efficiency and reducing manual effort
• Availability for on-call duty

YOUR PROFILE

• Hands-on experience with secrets management solutions, preferably HashiCorp Vault, including implementation, administration, and integration into enterprise systems; familiarity with Delinea (formerly Thycotic) Secret Server is advantageous
• Practical understanding of key IT security domains, including Secure Web Gateway technologies (e.g., Zscaler), Application Delivery Controllers (e.g., Citrix ADC/NetScaler), Public Key Infrastructure (PKI), and Multi-Factor Authentication (MFA) frameworks
• Minimum of 2–3 years in 2nd and 3rd line engineering or operations roles supporting enterprise-grade IT security services, ideally within highly regulated environments such as financial services
• Strong system administration skills across Linux and Windows platforms
• Demonstrated experience with automation and infrastructure-as-code using Ansible, Terraform, Git, and scripting languages such as Python, Bash, PowerShell, and REST API integrations
• Working knowledge of cloud platforms (AWS, Azure, or GCP), with focus on secure identity and access management
• Exposure to Kubernetes and containerised environments, particularly regarding secrets injection and secure workload identity
• Solid understanding of core cybersecurity principles, including authentication, authorisation, encryption, zero trust, and least privilege access controls
• Relevant academic background in Computer Science, Information Security, or related field—or equivalent practical experience; industry certifications such as CISSP, CISM, or CEH are a strong plus
• HashiCorp Certified Vault Associate (or higher) is desirable but not mandatory
• Team player with strong collaboration skills and a sense of ownership
• Excellent verbal and written communication skills
• Proactive, self-driven, and committed to continuous learning and skill development
• Capable of independent decision-making, incident resolution, and managing change requests with minimal supervision
• Strong analytical and conceptual thinking abilities, with attention to detail and awareness of long-term architectural impact
• Comfortable operating effectively within a globally distributed team environment

We are looking forward to receiving your full job application through our online application tool. Further interesting job opportunities can be found on our Career site .

Is this not quite what you are looking for? Set up a job alert by creating a candidate account here .