Secrets Manager
LCI Consulting Inc.
- Bridgetown / Kingston and St. Andrew / Port-of-Spain
- Not disclosed
- Contract
- Updated 28/11/2025
- Human Resource
Responsible for protecting sensitive credentials and cryptographic material used by applications, systems, and services through implementation of modern secrets management practices, tools, and processes
CAREER OPPORTUNITY
Title: Secrets Manager
Work type: Contract - 6 months
Seniority level: Management
Work Location: Barbados (remote work possible)
Position Description:
The Secrets Manager is responsible for protecting sensitive credentials and cryptographic material used by applications, systems, and services through implementation of modern secrets management practices, tools, and processes.
Main responsibilities of the role:
Secrets Management Strategy
Develop and implement secrets management strategy and framework aligned with security objectives
Define secrets classification and handling requirements
Identify all types of secrets requiring management (API keys, passwords, certificates, encryption keys, database credentials, service account credentials)
Assess current practices and develop maturity roadmap
Secrets Vault and KMS Implementation
In collaboration with key stakeholders select and implement secrets vault solutions
Configure vault security controls and access policies
Establish high availability and disaster recovery
Secrets Storage and Lifecycle
Establish secure storage procedures
Manage secrets lifecycle from creation to deletion
Maintain secrets inventory and metadata
Secrets Rotation and Renewal
Implement secrets rotation policies
Establish rotation schedules for different secret types
Manage emergency rotation processes
Secrets Usage Monitoring
Identify potential exposure or compromise
Track secrets usage across systems and applications
Investigate secrets-related incidents
Secrets Security Control
Scan code repositories for exposed secrets
Implement pre-commit hooks to prevent secrets commits
Implement encryption at rest and in transit
Establish physical security for HSMs and key material
The ideal candidate will possess the following qualifications & experience:
Bachelor’s degree in computer science, Cybersecurity, Information Technology, or related field
Minimum 3-5 years' experience in information security with 3+ years focused on secrets management, cryptography, or key management
Experience implementing secrets management solutions (HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, CyberArk, etc.)
Experience with certificate management and PKI
Experience with cloud secrets management (AWS, Azure, Google Cloud)
Experience with container and Kubernetes secrets management
Desirable Certifications
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified Encryption Specialist
Core Competencies:
Technical Knowledge and Skills
A good understanding of cryptographic principles and key management
Expertise with secrets management platforms
Knowledge of HSMs and hardware-based key protection
Understanding of PKI and certificate management
Knowledge of cloud security and secrets management
Understanding of DevSecOps practices
Familiarity with regulatory compliance (encryption, key management)
Container security (Docker, Kubernetes)
API integration and development
Only shortlisted candidates will be contacted
