Back to Skills

Hashicorp Vault

Level: Intermediate

Category: Security

Proficiency Since: January 1, 2023

Page Last Updated: June 10, 2025

Centralized Secrets Management

My security expertise includes the deployment and management of Hashicorp Vault to address the critical challenge of secrets management in a modern infrastructure.

At Carousell Group, I led the project to establish Vault as the central, secure source of truth for all application secrets. The initiative involved deploying and configuring a Vault cluster and then spearheading the migration of sensitive credentials (database passwords, API keys, etc.) from insecure, scattered locations like git repositories and server configuration files.

This project was a major step forward for the security posture of the environment. By centralizing secrets in Vault, we eliminated secrets sprawl, enabled dynamic secret rotation, and provided a clear, auditable, and secure mechanism for applications to access the credentials they need.

Key Competencies

  • Vault Deployment: Installing and configuring Vault in a cloud environment.
  • Secrets Migration: Planning and executing the migration of secrets from legacy systems into Vault.
  • Policy & Access Control: Defining policies to govern access to secrets.
  • DevSecOps: Integrating secrets management into the CI/CD pipeline and application lifecycle.

Associated Technologies: