A cloud security engineer is tasked with implementing a secure solution for managing API keys, encryption keys, and other sensitive credentials across a multi-cloud environment. Which of the following is the MOST effective approach to ensure security and compliance?