Who We Are Goldman Sachs is a leading global investment banking, securities and investment management firm that provides a wide range of services worldwide to a substantial and diversified client base that includes corporations, financial institutions, governments and high net-worth individuals. Founded in 1869, it is one of the oldest and largest investment banking firms.
Secrets and Encryption Services is part of the Identity and Access Management (IAM) business unit within Core Engineering Division of Goldman Sachs. Our mission is to protect the firm and our clients from cyberthreats such as credential compromise through the services we deliver and operate. The S&ES team is on a journey to uplift credential management solutions across the enterprise with a transformational programme to improve the security posture for the firm. including the integration and adoption of HashiCorp Vault across environments.
The Role We are seeking a highly skilled and experienced Lead Site Reliability Engineer (SRE) and DevOps Engineer with a strong focus on cyber security and secrets management to join our dynamic team. The ideal candidate will be responsible for ensuring the reliability, performance, and scalability of mission-critical, high-availability, high-throughput systems and infrastructure while implementing robust security measures. This role involves leading collaborating with cross-functional teams, and implementing best practices in SRE, DevOps, and cyber security to enhance our operational efficiency and security posture.
System Reliability, Performance, and Security: - Design, implement, and maintain highly available, scalable, and secure systems.
- Monitor system performance, reliability, and security, proactively identifying and resolving issues.
- Troubleshoot and resolve issues across all environments, owning root cause analysis and incident management post-mortems.
Infrastructure Automation, Management, and Security: - Automate infrastructure provisioning, configuration, and deployment processes with a focus on security and reducing toil.
- Implement and manage CI/CD pipelines to streamline software delivery while ensuring security best practices.
- Ensure infrastructure security and compliance with industry standards and regulations.
Secrets Management: - Implement and manage secrets management solutions to securely store and sensitive information for the enterprise.
- Knowledgeable in system security principles and best practices around secret and key management services.
- Educate and enforce best practices for secrets management across the organization.
Collaboration and Communication: - Technical leadership and mentoring, fostering a culture of continuous improvement, innovation, and security awareness.
- Work closely with development, product, and security teams to ensure seamless integration, deployment, and security of our services.
- Communicate effectively with stakeholders to understand requirements and provide updates on system status, security improvements, and enhancements.
Documentation and Reporting: - Maintain comprehensive documentation of systems, processes, procedures, and security measures.
- Generate regular reports on system performance, incidents, security breaches, and improvements.
Core Skills and Experience we are looking for Technical Expertise: - Deep understanding of high-availability systems architecture and the ability to design and administer scalable and robust systems.
- Proficiency in scripting languages (Python, Bash, etc.).
- Experience with containerization and orchestration tools (Kubernetes).
- Expertise in infrastructure as code (Terraform) and their security implications.
- Knowledge of monitoring, logging, and security tools (Prometheus, Grafana, Splunk and BQL).
- Experience of supporting Windows & Linux environments.
Cyber Security: - In-depth understanding of cyber security principles and best practices.
- Experience with implementing and managing secrets management solutions.
- Familiarity with security frameworks (NIST, ISO 27001) and compliance requirements.
Problem-Solving and Analytical Skills: - Excellent problem-solving and analytical skills to identify and resolve complex issues.
- Ability to proactively identify potential security threats and vulnerabilities.
Leadership and Communication: - Strong communication and leadership abilities to effectively manage a team and collaborate with global cross-functional teams.
- Ability to communicate complex technical concepts to both client and technical peer audiences.
- Leads by example. P assionate for learning new products and technologies.
Preferred Qualifications - Bachelor's degree in Computer Science, Engineering, or a related field.
- 7+ years of experience in SRE, DevOps, or related roles with a focus on cyber security.
- Experience working in finance or another highly regulated industry.
- Hands-On expertise with Secrets Management platforms (HashiCorp Vault desirable but not essential)
About Goldman Sachs At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers .
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html
© The Goldman Sachs Group, Inc., 2021. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
