Full-Time Product Security Engineer (Kubernetes)

Main Responsibilities

• Kubernetes and Container Security: Perform penetration testing on Kubernetes workloads and containerized environments, identifying and addressing vulnerabilities specific to these systems. Strengthen the security of Kubernetes clusters by evaluating configurations, implementing best practices (e.g., RBAC, network policies), and addressing runtime security concerns.
• Vulnerability Management: Prioritize and remediate vulnerabilities across Kubernetes clusters and related components, working closely with engineering teams to deliver secure solutions. Help establish secure coding practices and provide feedback on fixes for identified vulnerabilities.
• Compliance and Standards: Drive efforts to meet and maintain industry security certifications (e.g., SOC 2, ISO 27001) and ensure alignment with Kubernetes security benchmarks. Assist with audit preparations by providing technical expertise and documentation.
• Cross-Team Collaboration: Work with product and engineering teams to embed security throughout the development lifecycle. Support sales and customer teams by explaining security features and addressing customer concerns about security or compliance. Create and maintain a long-term security strategy that addresses emerging threats and aligns with company-wide security initiatives. Monitor developments in Kubernetes security and implement relevant improvements.

Qualifications and Experience Requirements

• Essential Qualifications: At least 5 years of experience in application security, penetration testing, or a related role, with a focus on Kubernetes or containerized environments. Deep understanding of Kubernetes architecture, including components like kubelet, kube-apiserver, etcd, and networking within Kubernetes clusters. Experience securing containerized applications, Kubernetes workloads, and orchestration platforms. Proven ability to conduct penetration tests in Kubernetes and containerized environments, identifying and remediating vulnerabilities.
• Preferred Certifications: Offensive Security Certified Professional (OSCP), GIAC Kubernetes and Cloud-Native Security (GKS), Certified Kubernetes Security Specialist (CKS), Offensive Security Web Expert (OSWE), GIAC Web Application Penetration Tester (GWAPT).
• Preferred Qualifications: Strong programming or scripting skills (e.g., Python, Go) for automating security testing and remediation in Kubernetes environments. Knowledge of cloud platforms (AWS, Azure, GCP) and their Kubernetes offerings (e.g., EKS, AKS, GKE). Experience contributing to or maintaining open-source Kubernetes-related projects. Excellent communication skills for engaging with internal stakeholders and external customers.

What is the last date for applying to the job?

Which countries are accepted for this remote job?