diff --git a/clusters/yc-k8s-test/infrastructure/kustomization.yaml b/clusters/yc-k8s-test/infrastructure/kustomization.yaml
index ec4211c..c114093 100644
--- a/clusters/yc-k8s-test/infrastructure/kustomization.yaml
+++ b/clusters/yc-k8s-test/infrastructure/kustomization.yaml
@@ -134,3 +134,10 @@ patches:
       kind: HelmRelease
       name: openldap
       namespace: openldap
+  - path: ./patches/vault.yaml
+    target:
+      group: helm.toolkit.fluxcd.io
+      version: v2
+      kind: HelmRelease
+      name: vailt
+      namespace: vault    
diff --git a/clusters/yc-k8s-test/infrastructure/patches/vault.yaml b/clusters/yc-k8s-test/infrastructure/patches/vault.yaml
new file mode 100644
index 0000000..ee2ac55
--- /dev/null
+++ b/clusters/yc-k8s-test/infrastructure/patches/vault.yaml
@@ -0,0 +1,8 @@
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: vault
+  namespace: vault
+spec:
+  interval: 5m
+  timeout: 10m
diff --git a/infrastructure/kustomization.yaml b/infrastructure/kustomization.yaml
index 4f9e07e..0361b09 100644
--- a/infrastructure/kustomization.yaml
+++ b/infrastructure/kustomization.yaml
@@ -19,3 +19,4 @@ resources:
   - istio-pilot
   - istio-gateway
   - zitadel
+  - vault
diff --git a/infrastructure/vault/base/helmrelease.yaml b/infrastructure/vault/base/helmrelease.yaml
new file mode 100644
index 0000000..6ff485f
--- /dev/null
+++ b/infrastructure/vault/base/helmrelease.yaml
@@ -0,0 +1,22 @@
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: vault
+  namespace: vault
+spec:
+  interval: 10m
+  chart:
+    spec:
+      chart: vault-contour
+      version: "0.1.0"
+      sourceRef:
+        kind: HelmRepository
+        name: yc-oci-charts
+        namespace: flux-system
+      interval: 10m
+  install:
+    remediation:
+      retries: 3
+  upgrade:
+    remediation:
+      retries: 3
diff --git a/infrastructure/vault/base/kustomization.yaml b/infrastructure/vault/base/kustomization.yaml
new file mode 100644
index 0000000..7f43e04
--- /dev/null
+++ b/infrastructure/vault/base/kustomization.yaml
@@ -0,0 +1,6 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: zitadel
+resources:
+  - helmrelease.yaml
+  - namespace.yaml
diff --git a/infrastructure/vault/base/namespace.yaml b/infrastructure/vault/base/namespace.yaml
new file mode 100644
index 0000000..77ee9e7
--- /dev/null
+++ b/infrastructure/vault/base/namespace.yaml
@@ -0,0 +1,6 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: vault
+  labels:
+    istio-injection: enabled
diff --git a/infrastructure/vault/kustomization.yaml b/infrastructure/vault/kustomization.yaml
new file mode 100644
index 0000000..85dcd9d
--- /dev/null
+++ b/infrastructure/vault/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - base