Principal, HashiCorp Vault Expert

Company: Fidelity Investments
Location: Roanoke
Posted on: January 3, 2026

Job Description:

Job Description: In this role on the Privileged Access Management team, your primary responsibility will be to own and operate Fidelity’s HashiCorp Vault application. This is an enterprise-class installation providing secrets management services to over 5,000 business unit applications. You will design, develop, and support new and improved access management capabilities that meet Fidelity’s stringent cybersecurity policies and requirements. You will administer critical production environments including implementation of monitoring, upgrades, performance & capacity improvements, certifying disaster readiness, improving CI/CD with process automation, and analyzing key metrics and trends. We operate in an Agile framework where you will have an opportunity to participate in sprint planning to provide prioritization, and realistic and achievable estimates. You will also contribute towards continuous improvement efforts aimed at increasing the efficiency and velocity of the team. The Expertise You Have and The Skills You Bring Bachelor’s degree in Computer Science, Computer Engineering, Computer Systems Networking, Information Systems/Science, or a related discipline 5 years of experience and demonstrated expertise with administration and operation of the HashiCorp Vault application is a requirement for this role You have systems and application management experience on Linux/UNIX platforms You have experience with cloud architecture and have built applications in, or migrated applications to, Amazon Web Services AWS or Microsoft Azure You have experience with networking, firewalls, and load balancers You have experience building automated pipelines and deploying with CI/CD technologies such as Jenkins, Git, Ansible, Chef, Artifactory, AWS Cloud Formation Templates, Terraform, EC2, Lambda, Docker/Kubernetes, and KMS You develop advanced, customized workflows and automated processes for/with vendor applications You have strong scripting & automation skills, specifically in Python and Ansible You have excellent written and verbal communication skills with the ability to present to both technical and business audiences You have demonstrated experience in leading small technical teams You have the ability to independently perform systems design & architecture work to satisfy technical objectives and meet business requirements The Team In this position you will join Fidelity’s Enterprise Cybersecurity business unit as a member of the Privileged Access Management team. We are a dynamic, high visibility team that provides a variety of access management services to all of Fidelity’s business units. The Privileged Access Management team is comprised of engineers located in the US, Ireland, and India. We leverage an Agile operating model to install, configure, operate, and maintain a set of in-house and vendor applications providing a multitude of access management capabilities to the firm. We are a DevOps team that engages in systems engineering, software engineering, and production services support. The base salary range for this position is $107,000-216,000 USD per year. Placement in the range will vary based on job responsibilities and scope, geographic location, candidate’s relevant experience, and other factors. Base salary is only part of the total compensation package. Depending on the position and eligibility requirements, the offer package may also include bonus or other variable compensation. We offer a wide range of benefits to meet your evolving needs and help you live your best life at work and at home. These benefits include comprehensive health care coverage and emotional well-being support, market-leading retirement, generous paid time off and parental leave, charitable giving employee match program, and educational assistance including student loan repayment, tuition reimbursement, and learning resources to develop your career. Note, the application window closes when the position is filled or unposted. Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories. Most roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles. Certifications: Category: Information Technology

Keywords: Fidelity Investments, Richardson , Principal, HashiCorp Vault Expert, IT / Software / Systems , Roanoke, Texas