diff --git a/.github/workflows/dev-build-and-deploy.yaml b/.github/workflows/dev-build-and-deploy.yaml
index cd5928b0..f3084374 100644
--- a/.github/workflows/dev-build-and-deploy.yaml
+++ b/.github/workflows/dev-build-and-deploy.yaml
@@ -24,6 +24,13 @@ jobs:
                     java-version: "17"
                     distribution: "corretto"
 
+            -   name: Configure AWS credentials
+                uses: aws-actions/configure-aws-credentials@v1
+                with:
+                    aws-access-key-id: ${{ secrets.AWS_S3_ACCESS_KEY }}
+                    aws-secret-access-key: ${{ secrets.AWS_S3_SECRET_KEY }}
+                    aws-region: ap-northeast-2
+
             -   name: Cache Gradle
                 uses: actions/cache@v3
                 with:
@@ -111,36 +118,10 @@ jobs:
                           -p 9292:9292 \
                           -p 3100:3100 \
                           -e SPRING_PROFILES_ACTIVE=dev \
-                          -e SPRING_SERVLET_MULTIPART_MAX-FILE-SIZE=30MB \
-                          -e SPRING_SERVLET_MULTIPART_MAX-REQUEST-SIZE=30MB \
-                          -e AWS_REDIS_HOST=${{ secrets.DEV_REDIS_HOST }} \
-                          -e AWS_REDIS_PORT=${{ secrets.DEV_REDIS_PORT }}  \
-                          -e SPRING_DATASOURCE_URL=${{ secrets.DEV_DB_URL }} \
-                          -e SPRING_DATASOURCE_USERNAME=${{ secrets.DEV_DB_USERNAME }} \
-                          -e SPRING_DATASOURCE_PASSWORD=${{ secrets.DEV_DB_PASSWORD }} \
-                          -e SPRING_JWT_SECRET=${{ secrets.JWT_SECRET }} \
-                          -e OAUTH_CLIENTID=${{ secrets.KAKAO_CLIENT_ID }} \
-                          -e OAUTH_KAUTHTOKENURLHOST=${{ secrets.KAUTH_TOKEN_URL_HOST }} \
-                          -e OAUTH_KAUTHUSERURLHOST=${{ secrets.KAUTH_USER_URL_HOST }} \
-                          -e OAUTH_KAKAOCLIENTID=${{ secrets.OAUTH_KAKAOCLIENTID }} \
-                          -e OAUTH_KAKAOAUTHTOKENURLHOST=${{ secrets.KAKAOAUTHTOKENURLHOST }} \
-                          -e OAUTH_KAKAOAUTHUSERURLHOST=${{ secrets.KAKAOAUTHUSERURLHOST }} \
-                          -e OAUTH_KAKAOREDIRECTURL=${{ secrets.KAKAOREDIRECTURL }} \
-                          -e OAUTH_GOOGLECLIENTID=${{ secrets.GOOGLECLIENTID }} \
-                          -e OAUTH_GOOGLECLIENTSECRET=${{ secrets.GOOGLECLIENTSECRET }} \
-                          -e OAUTH_GOOGLEREDIRECTURL=${{ secrets.GOOGLEREDIRECTURL }} \
-                          -e OAUTH_GOOGLEAUTHTOKENURLHOST=${{ secrets.GOOGLEAUTHTOKENURLHOST }} \
-                          -e OAUTH_GOOGLEUSERURLHOST=${{ secrets.GOOGLEUSERURLHOST }} \
                           -e SPRING_JPA_HIBERNATE_DDL_AUTO=validate \
-                          -e AWS_S3_ACCESS_KEY=${{ secrets.AWS_S3_ACCESS_KEY }} \
-                          -e AWS_S3_SECRET_KEY=${{ secrets.AWS_S3_SECRET_KEY }} \
-                          -e AWS_S3_BUCKET_NAME=${{ secrets.DEV_AWS_S3_BUCKET_NAME }} \
-                          -e AWS_S3_BASICPROFILEIMAGEURL=${{ secrets.BASICPROFILEIMAGEURL }} \
+                          -e SPRING_CREDENTIALS_ACCESS_KEY=${{secrets.AWS_S3_ACCESS_KEY}} \
+                          -e SPRING_CREDENTIALS_SECRET_KEY=${{secrets.AWS_S3_SECRET_KEY}} \
                           -e TZ=Asia/Seoul \
-                          -e SENTRY_DSN=${{ secrets.SENTRY_DSN }} \
-                          -e SENTRY_ENABLE_TRACING=true \
-                          -e SENTRY_ENVIRONMENT=prod \
-                          -e LOKI_URL=${{ secrets.LOKI_SERVER_URL }} \
                           ${{ secrets.DOCKERHUB_USERNAME }}/spot-server:dev-${{ github.sha }}
                         docker system prune -af
 
diff --git a/.github/workflows/manual-prod-deploy.yaml b/.github/workflows/manual-prod-deploy.yaml
index e56e7ce2..cf99069d 100644
--- a/.github/workflows/manual-prod-deploy.yaml
+++ b/.github/workflows/manual-prod-deploy.yaml
@@ -48,35 +48,9 @@ jobs:
                           -p 9292:9292 \
                           -p 3100:3100 \
                           -e SPRING_PROFILES_ACTIVE=prod \
-                          -e SPRING_SERVLET_MULTIPART_MAX-FILE-SIZE=30MB \
-                          -e SPRING_SERVLET_MULTIPART_MAX-REQUEST-SIZE=30MB \
-                          -e AWS_REDIS_HOST=${{ secrets.PROD_REDIS_HOST }} \
-                          -e AWS_REDIS_PORT=${{ secrets.PROD_REDIS_PORT }}  \
-                          -e SPRING_DATASOURCE_URL=${{ secrets.PROD_DB_URL }} \
-                          -e SPRING_DATASOURCE_USERNAME=${{ secrets.PROD_DB_USERNAME }} \
-                          -e SPRING_DATASOURCE_PASSWORD=${{ secrets.PROD_DB_PASSWORD }} \
-                          -e SPRING_JWT_SECRET=${{ secrets.JWT_SECRET }} \
-                          -e KAKAO_CLIENT_ID=${{ secrets.KAKAO_CLIENT_ID }} \
-                          -e OAUTH_KAUTHTOKENURLHOST=${{ secrets.KAUTH_TOKEN_URL_HOST }} \
-                          -e OAUTH_KAUTHUSERURLHOST=${{ secrets.KAUTH_USER_URL_HOST }} \
-                          -e OAUTH_KAKAOCLIENTID=${{ secrets.OAUTH_KAKAOCLIENTID }} \
-                          -e OAUTH_KAKAOAUTHTOKENURLHOST=${{ secrets.KAKAOAUTHTOKENURLHOST }} \
-                          -e OAUTH_KAKAOAUTHUSERURLHOST=${{ secrets.KAKAOAUTHUSERURLHOST }} \
-                          -e OAUTH_KAKAOREDIRECTURL=${{ secrets.KAKAOREDIRECTURL }} \
-                          -e OAUTH_GOOGLECLIENTID=${{ secrets.GOOGLECLIENTID }} \
-                          -e OAUTH_GOOGLECLIENTSECRET=${{ secrets.GOOGLECLIENTSECRET }} \
-                          -e OAUTH_GOOGLEREDIRECTURL=${{ secrets.GOOGLEREDIRECTURL }} \
-                          -e OAUTH_GOOGLEAUTHTOKENURLHOST=${{ secrets.GOOGLEAUTHTOKENURLHOST }} \
-                          -e OAUTH_GOOGLEUSERURLHOST=${{ secrets.GOOGLEUSERURLHOST }} \
                           -e SPRING_JPA_HIBERNATE_DDL_AUTO=validate \
-                          -e AWS_S3_ACCESS_KEY=${{ secrets.AWS_S3_ACCESS_KEY }} \
-                          -e AWS_S3_SECRET_KEY=${{ secrets.AWS_S3_SECRET_KEY }} \
-                          -e AWS_S3_BUCKET_NAME=${{ secrets.PROD_AWS_S3_BUCKET_NAME }} \
-                          -e AWS_S3_BASICPROFILEIMAGEURL=${{ secrets.BASICPROFILEIMAGEURL }} \
+                          -e SPRING_CREDENTIALS_ACCESS_KEY=${{secrets.AWS_S3_ACCESS_KEY}} \
+                          -e SPRING_CREDENTIALS_SECRET_KEY=${{secrets.AWS_S3_SECRET_KEY}} \
                           -e TZ=Asia/Seoul \
-                          -e SENTRY_DSN=${{ secrets.SENTRY_DSN }} \
-                          -e SENTRY_ENABLE_TRACING=true \
-                          -e SENTRY_ENVIRONMENT=prod \
-                          -e LOKI_URL=${{ secrets.LOKI_SERVER_URL }} \
                           ${{ secrets.DOCKERHUB_USERNAME }}/spot-server:prod-${{ github.event.inputs.tag }}
                         docker system prune -af
\ No newline at end of file
diff --git a/.gitignore b/.gitignore
index 008d7ed9..e3ac083e 100644
--- a/.gitignore
+++ b/.gitignore
@@ -384,13 +384,5 @@ gradle-app.setting
 
 .env
 
-*.application-jwt.yml
-*.application-monitoring.yml
-application-jwt.yml
-application-oauth.yml
-application-sentry.yml
-application-aws.yaml
-application-mixpanel.yaml
-
 # 민성 레디스 바이너리 파일
-redis-server-7.2.3-mac-arm64
\ No newline at end of file
+redis-server-7.2.3-mac-arm64
diff --git a/application/.gitignore b/application/.gitignore
index fbcb1d18..01099eaf 100644
--- a/application/.gitignore
+++ b/application/.gitignore
@@ -41,7 +41,3 @@ bin/
 ### Mac OS ###
 .DS_Store
 
-*.application-jwt.yml
-
-### loki ###
-**/application-monitoring.yml
\ No newline at end of file
diff --git a/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtProperties.java b/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtProperties.java
index 28f76925..def7383b 100644
--- a/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtProperties.java
+++ b/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtProperties.java
@@ -1,6 +1,17 @@
 package org.depromeet.spot.application.common.jwt;
 
 import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.context.annotation.DependsOn;
+import org.springframework.stereotype.Component;
 
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+@Component
 @ConfigurationProperties(prefix = "spring.jwt")
-public record JwtProperties(String secret) {}
+@DependsOn("awsSecretsManagerConfig")
+public class JwtProperties {
+    String secret;
+}
diff --git a/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtTokenUtil.java b/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtTokenUtil.java
index 8cf058cc..579fe6f3 100644
--- a/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtTokenUtil.java
+++ b/application/src/main/java/org/depromeet/spot/application/common/jwt/JwtTokenUtil.java
@@ -59,13 +59,13 @@ public String generateToken(Long memberId, MemberRole memberRole) {
                 .setClaims(createClaims(memberId, memberRole))
                 .setIssuedAt(current)
                 .setExpiration(expiredAt)
-                .signWith(SignatureAlgorithm.HS256, properties.secret().getBytes())
+                .signWith(SignatureAlgorithm.HS256, properties.getSecret().getBytes())
                 .compact();
     }
 
     public Long getIdFromJWT(String token) {
         return Jwts.parser()
-                .setSigningKey(properties.secret().getBytes())
+                .setSigningKey(properties.getSecret().getBytes())
                 .parseClaimsJws(token)
                 .getBody()
                 .get("memberId", Long.class);
@@ -73,7 +73,7 @@ public Long getIdFromJWT(String token) {
 
     public String getRoleFromJWT(String token) {
         return Jwts.parser()
-                .setSigningKey(properties.secret().getBytes())
+                .setSigningKey(properties.getSecret().getBytes())
                 .parseClaimsJws(token)
                 .getBody()
                 .get("role", String.class);
@@ -122,7 +122,7 @@ private Map<String, Object> createClaims(Long memberId, MemberRole role) {
     }
 
     private Key createSignature() {
-        byte[] apiKeySecretBytes = properties.secret().getBytes();
+        byte[] apiKeySecretBytes = properties.getSecret().getBytes();
         return new SecretKeySpec(apiKeySecretBytes, SignatureAlgorithm.HS256.getJcaName());
     }
 
diff --git a/application/src/main/resources/appenders/console-appender.xml b/application/src/main/resources/appenders/console-appender.xml
index 97295287..4f77452c 100644
--- a/application/src/main/resources/appenders/console-appender.xml
+++ b/application/src/main/resources/appenders/console-appender.xml
@@ -13,7 +13,7 @@
 
     <appender name="LOKI_APPENDER" class="com.github.loki4j.logback.Loki4jAppender">
         <http>
-            <url>http://${LOKI_URL}:3100/loki/api/v1/push</url>
+            <url>http://${loki.url}:3100/loki/api/v1/push</url>
         </http>
         <format>
             <label>
diff --git a/application/src/main/resources/application.yaml b/application/src/main/resources/application.yaml
index aa4a88d8..65f8c5f1 100644
--- a/application/src/main/resources/application.yaml
+++ b/application/src/main/resources/application.yaml
@@ -9,24 +9,14 @@ spring:
         group:
             local:
                 - jpa
-                - aws
-                - jwt
-                - oauth
+                - aws-credentials
                 - mixpanel
             dev:
                 - jpa
-                - aws
-                - jwt
-                - oauth
-                - monitoring
                 - mixpanel
             prod:
                 - jpa
-                - aws
-                - jwt
-                - oauth
                 - sentry
-                - monitoring
                 - mixpanel
     servlet:
         multipart:
@@ -56,21 +46,41 @@ management:
         web:
             exposure:
                 include: "*"
+
+# secret manager
+aws:
+    secretsmanager:
+        name: spot-local-secrets
+cloud:
+    aws:
+        region:
+            static: ap-northeast-2
+        stack:
+            auto: false
 ---
 spring:
     config:
         activate:
             on-profile: local
+aws:
+    secretsmanager:
+        name: spot-local-secrets
 ---
 spring:
     config:
         activate:
             on-profile: dev
+aws:
+    secretsmanager:
+        name: spot-dev-secrets
 ---
 spring:
     config:
         activate:
             on-profile: prod
+aws:
+    secretsmanager:
+        name: spot-prod-secrets
 
 decorator:
     datasource:
diff --git a/application/src/test/java/org/depromeet/spot/application/ReviewLikeServiceTest.java b/application/src/test/java/org/depromeet/spot/application/ReviewLikeServiceTest.java
index e9d99d9a..298ce21e 100644
--- a/application/src/test/java/org/depromeet/spot/application/ReviewLikeServiceTest.java
+++ b/application/src/test/java/org/depromeet/spot/application/ReviewLikeServiceTest.java
@@ -7,6 +7,7 @@
 import java.util.concurrent.Executors;
 import java.util.concurrent.atomic.AtomicLong;
 
+import org.depromeet.spot.application.common.jwt.JwtProperties;
 import org.depromeet.spot.domain.member.Level;
 import org.depromeet.spot.domain.member.Member;
 import org.depromeet.spot.domain.member.enums.MemberRole;
@@ -21,6 +22,7 @@
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.boot.test.autoconfigure.jdbc.AutoConfigureTestDatabase;
 import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.boot.test.mock.mockito.MockBean;
 import org.springframework.test.context.ActiveProfiles;
 import org.springframework.test.context.TestPropertySource;
 import org.springframework.test.context.jdbc.Sql;
@@ -35,7 +37,7 @@
 @SpringBootTest
 @Testcontainers
 @ActiveProfiles("test")
-@TestPropertySource("classpath:application-test.yml")
+@TestPropertySource({"classpath:application-test.yml"})
 @AutoConfigureTestDatabase(replace = AutoConfigureTestDatabase.Replace.NONE)
 @SqlGroup({
     @Sql(
@@ -47,6 +49,10 @@
 })
 class ReviewLikeServiceTest {
 
+    //    @MockBean private JwtTokenUtil jwtTokenUtil;
+    //
+    @MockBean private JwtProperties jwtProperties;
+
     @Autowired private ReviewLikeService reviewLikeService;
 
     @Autowired private ReadReviewUsecase readReviewUsecase;
diff --git a/application/src/test/resources/application-test.yml b/application/src/test/resources/application-test.yml
index 2850ede1..0be30f72 100644
--- a/application/src/test/resources/application-test.yml
+++ b/application/src/test/resources/application-test.yml
@@ -9,6 +9,9 @@ aws:
     redis:
         host: localhost
         port: 6379
+    credentials:
+        access-key: ${AWS_S3_ACCESS_KEY}
+        secret-key: ${AWS_S3_SECRET_KEY}
 
 oauth:
     kakaoClientId: ${KAKAO_CLIENT_ID}
@@ -19,7 +22,7 @@ oauth:
     googleClientSecret: ${GOOGLE_CLIENT_SECRET}
     googleRedirectUrl: ${GOOGLE_REDIRECT_URL}
     googleAuthTokenUrlHost: ${GOOGLE_AUTH_TOKEN_URL_HOST}
-    googleUserUrlHost: ${GOOGLE_USER_URL_HOST}
+    googleAuthUserUrlHost: ${GOOGLE_USER_URL_HOST}
 
 spring:
     datasource:
diff --git a/build.gradle.kts b/build.gradle.kts
index cc7d601f..c2cfeded 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -36,6 +36,10 @@ subprojects {
         testCompileOnly("org.projectlombok:lombok:_")
         testAnnotationProcessor("org.projectlombok:lombok:_")
 
+        // aws
+        implementation("org.springframework.cloud:spring-cloud-starter-bootstrap:_")
+        implementation("org.springframework.cloud:spring-cloud-starter-aws-secrets-manager-config:_")
+
         // configuration processor
         annotationProcessor("org.springframework.boot:spring-boot-configuration-processor:_")
 
diff --git a/common/src/main/resources/application-sentry.yml b/common/src/main/resources/application-sentry.yml
new file mode 100644
index 00000000..3f06673d
--- /dev/null
+++ b/common/src/main/resources/application-sentry.yml
@@ -0,0 +1,3 @@
+sentry:
+    enable-tracing: true
+    environment: prod
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/AwsSecretsManagerConfig.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/AwsSecretsManagerConfig.java
new file mode 100644
index 00000000..e4d3d161
--- /dev/null
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/AwsSecretsManagerConfig.java
@@ -0,0 +1,139 @@
+package org.depromeet.spot.infrastructure.aws.config;
+
+import java.util.Properties;
+
+import javax.sql.DataSource;
+
+import jakarta.annotation.PostConstruct;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Primary;
+import org.springframework.context.annotation.Profile;
+import org.springframework.core.env.ConfigurableEnvironment;
+import org.springframework.core.env.MutablePropertySources;
+import org.springframework.core.env.PropertiesPropertySource;
+import org.springframework.jdbc.datasource.DriverManagerDataSource;
+
+import com.amazonaws.auth.AWSStaticCredentialsProvider;
+import com.amazonaws.auth.BasicAWSCredentials;
+import com.amazonaws.services.secretsmanager.AWSSecretsManager;
+import com.amazonaws.services.secretsmanager.AWSSecretsManagerClientBuilder;
+import com.amazonaws.services.secretsmanager.model.GetSecretValueRequest;
+import com.amazonaws.services.secretsmanager.model.GetSecretValueResult;
+import com.fasterxml.jackson.databind.JsonNode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+@Configuration
+@Profile("!test")
+public class AwsSecretsManagerConfig {
+
+    private static final Logger logger = LoggerFactory.getLogger(AwsSecretsManagerConfig.class);
+
+    private final ConfigurableEnvironment environment;
+
+    @Value("${aws.credentials.access-key}")
+    private String accessKey;
+
+    @Value("${aws.credentials.secret-key}")
+    private String secretKey;
+
+    @Value("${aws.region.static}")
+    private String region;
+
+    @Value("${aws.secretsmanager.name}")
+    private String secretsManagerName;
+
+    public AwsSecretsManagerConfig(ConfigurableEnvironment environment) {
+        this.environment = environment;
+    }
+
+    @Bean
+    @Primary
+    @ConditionalOnProperty(name = "spring.profiles.active", havingValue = "!test")
+    public DataSource dataSource() {
+        DriverManagerDataSource dataSource = new DriverManagerDataSource();
+        dataSource.setUrl(environment.getProperty("spring.datasource.url"));
+        dataSource.setUsername(environment.getProperty("spring.datasource.username"));
+        dataSource.setPassword(environment.getProperty("spring.datasource.password"));
+        return dataSource;
+    }
+
+    @PostConstruct
+    public void init() {
+
+        try {
+            String secretString = getSecret(secretsManagerName);
+            JsonNode secretJson = new ObjectMapper().readTree(secretString);
+
+            Properties properties = new Properties();
+            secretJson
+                    .fields()
+                    .forEachRemaining(
+                            entry -> {
+                                String key = entry.getKey();
+                                String value = entry.getValue().asText();
+                                String camelCaseKey = toCamelCase(key);
+                                properties.setProperty(camelCaseKey, value);
+
+                                // 콘솔에 키와 값 출력
+                                logger.info(
+                                        "Loaded secret - Key:{}, Value: {}", camelCaseKey, value);
+                            });
+
+            MutablePropertySources propertySources = environment.getPropertySources();
+
+            // 가장 큰 우선순위를 가지게 함.
+            propertySources.addFirst(new PropertiesPropertySource("aws-secrets", properties));
+
+            logger.info(
+                    "Successfully loaded and applied {} secrets from AWS Secrets Manager",
+                    properties.size());
+
+        } catch (Exception e) {
+            throw new RuntimeException("Could not load secrets from AWS Secrets Manager", e);
+        }
+    }
+
+    public String getSecret(String secretName) {
+        BasicAWSCredentials awsCredentials = new BasicAWSCredentials(accessKey, secretKey);
+
+        AWSSecretsManager client =
+                AWSSecretsManagerClientBuilder.standard()
+                        .withRegion(region)
+                        .withCredentials(new AWSStaticCredentialsProvider(awsCredentials))
+                        .build();
+
+        GetSecretValueRequest getSecretValueRequest =
+                new GetSecretValueRequest().withSecretId(secretName);
+        GetSecretValueResult getSecretValueResult = client.getSecretValue(getSecretValueRequest);
+
+        return getSecretValueResult.getSecretString();
+    }
+
+    private String toCamelCase(String input) {
+        String[] parts = input.split("\\.");
+        if (parts.length == 1) {
+            return input;
+        }
+
+        StringBuilder result = new StringBuilder();
+        for (int i = 0; i < parts.length - 1; i++) {
+            result.append(parts[i]).append(".");
+        }
+        String lastPart = parts[parts.length - 1];
+        String[] words = lastPart.split("[-_]");
+        result.append(words[0].toLowerCase());
+        for (int i = 1; i < words.length; i++) {
+            if (!words[i].isEmpty()) {
+                result.append(Character.toUpperCase(words[i].charAt(0)))
+                        .append(words[i].substring(1).toLowerCase());
+            }
+        }
+        return result.toString();
+    }
+}
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/ObjectStorageConfig.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/ObjectStorageConfig.java
index a36cd98f..e4a7742d 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/ObjectStorageConfig.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/config/ObjectStorageConfig.java
@@ -18,7 +18,8 @@ public class ObjectStorageConfig {
 
     private final ObjectStorageProperties objectStorageProperties;
     private final Regions clientRegion = Regions.AP_NORTHEAST_2;
-    private static final String REGION = "kr-standard";
+
+    //    private static final String REGION = "kr-standard";
 
     @Bean
     public AmazonS3 getAmazonS3() {
@@ -27,8 +28,8 @@ public AmazonS3 getAmazonS3() {
                 .withCredentials(
                         new AWSStaticCredentialsProvider(
                                 new BasicAWSCredentials(
-                                        objectStorageProperties.accessKey(),
-                                        objectStorageProperties.secretKey())))
+                                        objectStorageProperties.getAccessKey(),
+                                        objectStorageProperties.getSecretKey())))
                 .build();
     }
 }
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/ImageUploader.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/ImageUploader.java
index e8d8c48f..497ec850 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/ImageUploader.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/ImageUploader.java
@@ -37,7 +37,7 @@ public String upload(String targetName, MultipartFile file, MediaProperty proper
         final String fileExtension = StringUtils.getFilenameExtension(file.getOriginalFilename());
         checkValidExtension(fileExtension, property);
 
-        final String bucketName = objectStorageProperties.bucketName();
+        final String bucketName = objectStorageProperties.getBucketName();
         final String fileName = createFileName(targetName, property.getFolderName(), fileExtension);
         ObjectMetadata objectMetadata = createObjectMetadata(file);
 
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/PresignedUrlGenerator.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/PresignedUrlGenerator.java
index 42565755..d629263b 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/PresignedUrlGenerator.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/objectstorage/PresignedUrlGenerator.java
@@ -58,7 +58,7 @@ private URL createPresignedUrl(final String fileName) {
 
     private GeneratePresignedUrlRequest createGeneratePreSignedUrlRequest(final String fileName) {
         log.info("presigned url generator: createGeneratePreSignedUrlRequest");
-        final String bucketName = objectStorageProperties.bucketName();
+        final String bucketName = objectStorageProperties.getBucketName();
         GeneratePresignedUrlRequest generatePresignedUrlRequest =
                 new GeneratePresignedUrlRequest(bucketName, fileName)
                         .withMethod(HttpMethod.PUT)
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/property/ObjectStorageProperties.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/property/ObjectStorageProperties.java
index a8bb970a..9345412d 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/property/ObjectStorageProperties.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/aws/property/ObjectStorageProperties.java
@@ -1,7 +1,20 @@
 package org.depromeet.spot.infrastructure.aws.property;
 
 import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.context.annotation.DependsOn;
 
+import lombok.Builder;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+@Builder
 @ConfigurationProperties(prefix = "aws.s3")
-public record ObjectStorageProperties(
-        String accessKey, String secretKey, String bucketName, String basicProfileImageUrl) {}
+@DependsOn("awsSecretsManagerConfig")
+public class ObjectStorageProperties {
+    String accessKey;
+    String secretKey;
+    String bucketName;
+    String basicProfileImageUrl;
+}
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/OauthRepositoryImpl.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/OauthRepositoryImpl.java
index a4d1bba7..83dedbec 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/OauthRepositoryImpl.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/OauthRepositoryImpl.java
@@ -37,7 +37,7 @@ public class OauthRepositoryImpl implements OauthRepository {
     public String getKakaoAccessToken(String authorizationCode) {
         // Webflux의 WebClient
         KakaoTokenEntity kakaoTokenEntity =
-                WebClient.create(properties.kakaoAuthTokenUrlHost())
+                WebClient.create(properties.getKakaoAuthTokenUrlHost())
                         .post()
                         .uri(
                                 uriBuilder ->
@@ -45,7 +45,8 @@ public String getKakaoAccessToken(String authorizationCode) {
                                                 .scheme("https")
                                                 .path("/oauth/token")
                                                 .queryParam("grant_type", AUTHORIZATION_CODE)
-                                                .queryParam("client_id", properties.kakaoClientId())
+                                                .queryParam(
+                                                        "client_id", properties.getKakaoClientId())
                                                 .queryParam("code", authorizationCode)
                                                 .build(true))
                         .header(
@@ -76,10 +77,10 @@ public String getOauthAccessToken(SnsProvider snsProvider, String authorizationC
 
         switch (snsProvider) {
             case KAKAO:
-                authTokenUrlHost = properties.kakaoAuthTokenUrlHost();
+                authTokenUrlHost = properties.getKakaoAuthTokenUrlHost();
                 break;
             default:
-                authTokenUrlHost = properties.googleAuthTokenUrlHost();
+                authTokenUrlHost = properties.getGoogleAuthTokenUrlHost();
                 break;
         }
 
@@ -95,10 +96,11 @@ public String getOauthAccessToken(SnsProvider snsProvider, String authorizationC
                                                     .path("/oauth/token")
                                                     .queryParam("grant_type", AUTHORIZATION_CODE)
                                                     .queryParam(
-                                                            "client_id", properties.kakaoClientId())
+                                                            "client_id",
+                                                            properties.getKakaoClientId())
                                                     .queryParam(
                                                             "redirect_uri",
-                                                            properties.kakaoRedirectUrl())
+                                                            properties.getKakaoRedirectUrl())
                                                     .queryParam("code", authorizationCode)
                                                     .build(true);
                                         default: // 기본적으로 GOOGLE 처리
@@ -108,13 +110,13 @@ public String getOauthAccessToken(SnsProvider snsProvider, String authorizationC
                                                     .queryParam("grant_type", AUTHORIZATION_CODE)
                                                     .queryParam(
                                                             "client_id",
-                                                            properties.googleClientId())
+                                                            properties.getGoogleClientId())
                                                     .queryParam(
                                                             "client_secret",
-                                                            properties.googleClientSecret())
+                                                            properties.getGoogleClientSecret())
                                                     .queryParam(
                                                             "redirect_uri",
-                                                            properties.googleRedirectUrl())
+                                                            properties.getGoogleRedirectUrl())
                                                     .queryParam("code", authorizationCode)
                                                     .build(true);
                                     }
@@ -139,10 +141,10 @@ public String getOauthAccessToken(SnsProvider snsProvider, String authorizationC
     @Override
     public Member getKakaoRegisterUserInfo(String accessToken, Member member) {
         KakaoUserInfoEntity userInfo = getKakaoUserInfo(accessToken);
-        log.info("basicProfileImage : {}", objectStorageProperties.basicProfileImageUrl());
+        log.info("basicProfileImage : {}", objectStorageProperties.getBasicProfileImageUrl());
 
         // 회원가입 시 받은 정보를 바탕으로 member로 변환해서 리턴.
-        return userInfo.toKakaoDomain(member, objectStorageProperties.basicProfileImageUrl());
+        return userInfo.toKakaoDomain(member, objectStorageProperties.getBasicProfileImageUrl());
     }
 
     @Override
@@ -150,10 +152,10 @@ public Member getOauthRegisterUserInfo(String accessToken, Member member) {
         switch (member.getSnsProvider()) {
             case KAKAO:
                 return getKakaoUserInfo(accessToken)
-                        .toKakaoDomain(member, objectStorageProperties.basicProfileImageUrl());
+                        .toKakaoDomain(member, objectStorageProperties.getBasicProfileImageUrl());
             default:
                 return getGoogleUserInfo(accessToken)
-                        .toGoogleDomain(member, objectStorageProperties.basicProfileImageUrl());
+                        .toGoogleDomain(member, objectStorageProperties.getBasicProfileImageUrl());
         }
     }
 
@@ -178,7 +180,7 @@ public Member getOauthLoginUserInfo(SnsProvider snsProvider, String accesstoken)
 
     public KakaoUserInfoEntity getKakaoUserInfo(String accessToken) {
         KakaoUserInfoEntity userInfo =
-                WebClient.create(properties.kakaoAuthUserUrlHost())
+                WebClient.create(properties.getKakaoAuthUserUrlHost())
                         .get()
                         .uri(
                                 uriBuilder ->
@@ -204,7 +206,7 @@ public KakaoUserInfoEntity getKakaoUserInfo(String accessToken) {
 
     public GoogleUserInfoEntity getGoogleUserInfo(String accessToken) {
         GoogleUserInfoEntity userInfo =
-                WebClient.create(properties.googleUserUrlHost())
+                WebClient.create(properties.getGoogleAuthUserUrlHost())
                         .get()
                         .uri(
                                 uriBuilder ->
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/config/OauthProperties.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/config/OauthProperties.java
index 0371f122..9b62fc46 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/config/OauthProperties.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/jpa/oauth/config/OauthProperties.java
@@ -1,15 +1,25 @@
 package org.depromeet.spot.infrastructure.jpa.oauth.config;
 
 import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.context.annotation.DependsOn;
 
+import lombok.Builder;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+@Builder
 @ConfigurationProperties(prefix = "oauth")
-public record OauthProperties(
-        String kakaoClientId,
-        String kakaoAuthTokenUrlHost,
-        String kakaoAuthUserUrlHost,
-        String kakaoRedirectUrl,
-        String googleClientId,
-        String googleClientSecret,
-        String googleRedirectUrl,
-        String googleAuthTokenUrlHost,
-        String googleUserUrlHost) {}
+@DependsOn("awsSecretsManagerConfig")
+public class OauthProperties {
+    String kakaoClientId;
+    String kakaoAuthTokenUrlHost;
+    String kakaoAuthUserUrlHost;
+    String kakaoRedirectUrl;
+    String googleClientId;
+    String googleClientSecret;
+    String googleRedirectUrl;
+    String googleAuthTokenUrlHost;
+    String googleAuthUserUrlHost;
+}
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/EmbeddedRedisConfig.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/EmbeddedRedisConfig.java
index 73385e03..788e6558 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/EmbeddedRedisConfig.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/EmbeddedRedisConfig.java
@@ -2,9 +2,11 @@
 
 import java.io.File;
 import java.io.IOException;
+import java.io.InputStream;
 import java.net.InetSocketAddress;
 import java.net.Socket;
-import java.util.Objects;
+import java.nio.file.Files;
+import java.nio.file.StandardCopyOption;
 
 import jakarta.annotation.PostConstruct;
 import jakarta.annotation.PreDestroy;
@@ -12,10 +14,12 @@
 import org.redisson.Redisson;
 import org.redisson.api.RedissonClient;
 import org.redisson.config.Config;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.context.annotation.Profile;
-import org.springframework.core.io.ClassPathResource;
+import org.springframework.core.io.Resource;
+import org.springframework.core.io.ResourceLoader;
 
 import lombok.extern.slf4j.Slf4j;
 import redis.embedded.RedisServer;
@@ -31,6 +35,8 @@ public class EmbeddedRedisConfig {
     private RedisServer redisServer;
     private final int embeddedRedisPort;
 
+    @Autowired private ResourceLoader resourceLoader;
+
     public EmbeddedRedisConfig() {
         this.embeddedRedisPort =
                 isPortInUse(REDIS_DEFAULT_PORT) ? findAvailablePort() : REDIS_DEFAULT_PORT;
@@ -39,27 +45,33 @@ public EmbeddedRedisConfig() {
 
     @PostConstruct
     public void redisServer() {
-        //        redisServer = new RedisServer(embeddedRedisPort);
-        if (isArmMac()) {
-            redisServer = new RedisServer(getRedisFileForArcMac(), embeddedRedisPort);
-        } else {
-            redisServer =
-                    RedisServer.builder()
-                            .port(embeddedRedisPort)
-                            .setting("maxmemory 128M") // maxheap 128M
-                            .build();
-        }
         try {
+            if (isArmMac()) {
+                File redisFile = getRedisFileForArcMac();
+                if (redisFile == null || !redisFile.exists()) {
+                    throw new RuntimeException("Redis binary file not found for ARM Mac");
+                }
+                redisServer = new RedisServer(redisFile, embeddedRedisPort);
+            } else {
+                redisServer =
+                        RedisServer.builder()
+                                .port(embeddedRedisPort)
+                                .setting("maxmemory 128M")
+                                .build();
+            }
             redisServer.start();
+            log.info("Embedded Redis server started on port {}", embeddedRedisPort);
         } catch (Exception e) {
-            e.printStackTrace();
+            log.error("Failed to start embedded Redis server", e);
+            throw new RuntimeException("Failed to start embedded Redis server", e);
         }
     }
 
     @PreDestroy
     public void stopRedis() {
-        if (redisServer != null) {
+        if (redisServer != null && redisServer.isActive()) {
             redisServer.stop();
+            log.info("Embedded Redis server stopped");
         }
     }
 
@@ -75,23 +87,39 @@ public RedissonClient redissonClient() {
      * System.getProperty("os.name") : 시스템 이름 반환
      */
     private boolean isArmMac() {
-        return Objects.equals(System.getProperty("os.arch"), "aarch64")
-                && Objects.equals(System.getProperty("os.name"), "Mac OS X");
+        String osArch = System.getProperty("os.arch");
+        String osName = System.getProperty("os.name");
+        return (osArch != null && osArch.equals("aarch64"))
+                && (osName != null && osName.equals("Mac OS X"));
     }
 
-    /** ARM 아키텍처를 사용하는 Mac에서 실행할 수 있는 Redis 바이너리 파일을 반환 */
     private File getRedisFileForArcMac() {
         try {
-            return new ClassPathResource("binary/redis/redis-server-7.2.3-mac-arm64").getFile();
-        } catch (Exception e) {
-            e.printStackTrace();
-            return null;
+            Resource resource =
+                    resourceLoader.getResource(
+                            "classpath:binary/redis/redis-server-7.2.3-mac-arm64");
+            if (!resource.exists()) {
+                throw new IOException("Redis binary file not found");
+            }
+
+            File tempFile = File.createTempFile("redis-server", ".tmp");
+            tempFile.deleteOnExit();
+
+            try (InputStream is = resource.getInputStream()) {
+                Files.copy(is, tempFile.toPath(), StandardCopyOption.REPLACE_EXISTING);
+            }
+
+            tempFile.setExecutable(true);
+            return tempFile;
+        } catch (IOException e) {
+            log.error("Failed to load Redis binary file", e);
+            throw new RuntimeException("Failed to load Redis binary file", e);
         }
     }
 
     private boolean isPortInUse(final int port) {
         try (Socket socket = new Socket()) {
-            socket.connect(new InetSocketAddress("localhost", port), 200);
+            socket.connect(new InetSocketAddress("localhost", port), 500);
             return true;
         } catch (IOException e) {
             return false;
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedisProperties.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedisProperties.java
index 4d912c43..0d8b031b 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedisProperties.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedisProperties.java
@@ -1,6 +1,16 @@
 package org.depromeet.spot.infrastructure.redis;
 
 import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.context.annotation.DependsOn;
 
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
 @ConfigurationProperties(prefix = "aws.redis")
-public record RedisProperties(String host, int port) {}
+@DependsOn("awsSecretsManagerConfig")
+public class RedisProperties {
+    private String host;
+    private int port;
+}
diff --git a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedissonConfig.java b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedissonConfig.java
index fd7e74f8..56679cd6 100644
--- a/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedissonConfig.java
+++ b/infrastructure/src/main/java/org/depromeet/spot/infrastructure/redis/RedissonConfig.java
@@ -24,9 +24,9 @@ public RedissonClient redissonClient() {
                 .useSingleServer()
                 .setAddress(
                         REDISSON_HOST_PREFIX
-                                + redisProperties.host()
+                                + redisProperties.getHost()
                                 + ":"
-                                + redisProperties.port());
+                                + redisProperties.getPort());
         return Redisson.create(redissonConfig);
     }
 }
diff --git a/infrastructure/src/main/resources/application-aws-credentials.yml b/infrastructure/src/main/resources/application-aws-credentials.yml
new file mode 100644
index 00000000..5c90fd29
--- /dev/null
+++ b/infrastructure/src/main/resources/application-aws-credentials.yml
@@ -0,0 +1,7 @@
+aws:
+    credentials:
+        access-key: ${AWS_S3_ACCESS_KEY}
+        secret-key: ${AWS_S3_SECRET_KEY}
+
+    region:
+        static: "ap-northeast-2"
diff --git a/infrastructure/src/main/resources/application-jpa.yaml b/infrastructure/src/main/resources/application-jpa.yaml
index 1bd93f1d..09e29453 100644
--- a/infrastructure/src/main/resources/application-jpa.yaml
+++ b/infrastructure/src/main/resources/application-jpa.yaml
@@ -1,10 +1,6 @@
 spring:
     datasource:
-        url: jdbc:mysql://localhost:3306/spot
-        username: test1234
-        password: test1234
         driver-class-name: com.mysql.cj.jdbc.Driver
-
     jpa:
         database: mysql
         database-platform: org.hibernate.dialect.MySQL8Dialect
diff --git a/infrastructure/src/test/java/org/depromeet/spot/infrastructure/aws/PresignedUrlGeneratorTest.java b/infrastructure/src/test/java/org/depromeet/spot/infrastructure/aws/PresignedUrlGeneratorTest.java
index df095fb3..4e221438 100644
--- a/infrastructure/src/test/java/org/depromeet/spot/infrastructure/aws/PresignedUrlGeneratorTest.java
+++ b/infrastructure/src/test/java/org/depromeet/spot/infrastructure/aws/PresignedUrlGeneratorTest.java
@@ -20,8 +20,12 @@ class PresignedUrlGeneratorTest {
     @BeforeEach
     void init() {
         ObjectStorageProperties objectStorageProperties =
-                new ObjectStorageProperties(
-                        "accessKey", "secretKey", "bucketName", "basicProfileImageUrl");
+                ObjectStorageProperties.builder()
+                        .accessKey("accessKey")
+                        .secretKey("secretKey")
+                        .bucketName("bucketName")
+                        .basicProfileImageUrl("basicProfileImageUrl")
+                        .build();
         FakeAmazonS3Config amazonS3 = new FakeAmazonS3Config(objectStorageProperties);
 
         FakeTimeUsecase fakeTimeUsecase = new FakeTimeUsecase("2024-07-09 21:00:00");
diff --git a/infrastructure/src/test/java/org/depromeet/spot/infrastructure/mock/FakeAmazonS3Config.java b/infrastructure/src/test/java/org/depromeet/spot/infrastructure/mock/FakeAmazonS3Config.java
index a5396164..b0dd6efd 100644
--- a/infrastructure/src/test/java/org/depromeet/spot/infrastructure/mock/FakeAmazonS3Config.java
+++ b/infrastructure/src/test/java/org/depromeet/spot/infrastructure/mock/FakeAmazonS3Config.java
@@ -18,6 +18,17 @@ public FakeAmazonS3Config(ObjectStorageProperties objectStorageProperties) {
         super(objectStorageProperties);
     }
 
+    @Bean
+    @Primary
+    public ObjectStorageProperties objectStorageProperties() {
+        return ObjectStorageProperties.builder()
+                .accessKey("accessKey")
+                .secretKey("secretKey")
+                .bucketName("bucketName")
+                .basicProfileImageUrl("basicProfileImageUrl")
+                .build();
+    }
+
     @Bean
     @Primary
     @Override
diff --git a/versions.properties b/versions.properties
index 54bba2c9..e120a0ad 100644
--- a/versions.properties
+++ b/versions.properties
@@ -7,7 +7,14 @@
 #### suppress inspection "SpellCheckingInspection" for whole file
 #### suppress inspection "UnusedProperty" for whole file
 
-plugin.org.springframework.boot=3.0.1
+# 3.0.1 => 3.2.2
+plugin.org.springframework.boot=3.2.2
+
+version.org.springframework.boot..spring-boot-starter-test=3.2.2
+
+version.org.springframework.boot..spring-boot-starter-data-jpa=3.2.2
+
+version.org.springframework.boot..spring-boot-configuration-processor=3.2.2
 
 plugin.io.sentry.jvm.gradle=4.10.0
 
@@ -25,10 +32,6 @@ version.org.projectlombok..lombok=1.18.30
 
 version.org.redisson..redisson-spring-boot-starter=3.34.1
 
-version.org.springframework.boot..spring-boot-starter-test=3.0.1
-
-version.org.springframework.boot..spring-boot-starter-data-jpa=3.0.1
-
 version.org.springdoc..springdoc-openapi-starter-webmvc-ui=2.5.0
 
 version.com.github.gavlyukovskiy..p6spy-spring-boot-starter=1.9.0
@@ -39,12 +42,14 @@ version.com.querydsl..querydsl-jpa=5.0.0
 
 version.org.springframework.cloud..spring-cloud-starter-aws=2.2.6.RELEASE
 
+version.org.springframework.cloud..spring-cloud-starter-aws-secrets-manager-config=2.2.6.RELEASE
+
+version.org.springframework.cloud..spring-cloud-starter-bootstrap=4.1.4
+
 version.org.springframework.boot..spring-boot-starter-data-redis=3.3.0
 
 version.org.redission..redisson-spring-boot-starter=3.26.0
 
-version.org.springframework.boot..spring-boot-configuration-processor=3.0.1
-
 version.io.sentry..sentry-logback=7.12.0
 
 version.io.sentry..sentry-spring-boot-starter-jakarta=7.12.0