Container Security Engineer - Docker/Kubernetes/OpenShift

Key Responsibilities :

- Design, implement, and maintain container security solutions in cloud and hybrid environments (e.g., Docker, Kubernetes, OpenShift).

- Develop and manage threat detection mechanisms specific to containerized workloads and services.

- Participate in the development and enhancement of insider and external threat detection capabilities using automation and analytics.

- Collaborate with engineering, DevOps, and IT teams to integrate security best practices into CI/CD pipelines.

- Support incident response efforts for security events involving containers and microservices.

- Evaluate, recommend, and implement container security tools and platforms (e.g., Prisma Cloud, Aqua Security, Sysdig, Twistlock).

- Perform threat modeling, risk assessments, and vulnerability assessments in containerized environments.

- Drive container hardening and establish baseline security configurations and policies.

- Create technical documentation, security standards, and operational playbooks.

Mandatory Skills & Requirements :

- 8+ years of hands-on experience in Information Security, with a strong focus on container and cloud-native security.

- Expertise with container platforms such as Docker, Kubernetes, and OpenShift.

- Experience in implementing and managing container security tools such as Aqua, Twistlock, Prisma Cloud, Sysdig, etc.

- Proficient in Linux-based systems, scripting (Python, Bash), and understanding of CI/CD pipelines.

- Familiarity with cloud environments (AWS, Azure, GCP) and their security frameworks.

- Strong understanding of network security, identity and access management (IAM), and threat detection techniques.

- Proven ability to work collaboratively with cross-functional teams.

- Strong problem-solving and communication skills.

- Demonstrated ability to handle confidential information with utmost discretion.

Good to Have :

- Relevant security certifications (e.g., CKS Certified Kubernetes Security Specialist, CISSP, GCP/AWS Security, etc.)

- Experience with DevSecOps practices.

- Familiarity with regulatory compliance and security standards (e.g., NIST, ISO 27001, CIS Benchmarks).