Kubernetes Security Engineer

V2Soft (www.v2soft.com) is a global company, headquartered out of Bloomfield Hills, Michigan, with locations in Mexico, Italy, India, China and Germany. At V2Soft, our mission is to provide high performance technology solutions to solve real business problems. We become our customer’s true partner, enabling both parties to enjoy success. We are committed to promoting diversity in the workplace, and believe it has a positive effect on our company and the customers we serve.

Role: Kubernetes Security Engineer
Exp: 7+ yrs
Work Location: Redmond, WA

Container Platform Security Engineer

Description:

Assist the Client AC team to define the future of mobility by implementing a cloud-based device platform designed to deliver innovative, new connected car services and solutions tailored to customer needs. As a Kubernetes Security Developer you will research, test and implement new cloud programs to secure Kubernetes platforms. You’re known for solving technical problems, driving efficient investigations, building prototypes, monitoring and managing, scalable and efficient platforms for the cloud.

Operational Work – 100% of time 

• Assess, implement, automate, and document security solutions and processes for Azure Kubernetes Services and/or OpenShift Container orchestration Cloud platforms, Micro-services and SaaS applications
• Work with platform engineers on secure best practices in Infrastructure as Code, secure cloud design patterns and CI/CD with built in application security controls
• Work on key areas to develop baseline cloud, container, and application security standards integrated into the CI/CD pipeline
• Implement security architecture, methods, and controls required to meet security, compliance, and audit requirements
• Implement “security as code” using secure practices for CI/CD pipelines and components
• Customize cloud compliance tools to meet operational, audit and risk based needs
• Respond to and, when appropriate, resolve or escalate security incidents
• Develop and maintain documentation for security systems and procedures
• Investigate and resolve security issues /incidents by providing postmortem analysis to identify root cause, possible solutions, and preventative measures
• Collaborate with business leaders, partners and architects on the technical and functional needs of the platform.
• You have experience identifying, providing and validating security requirements for Cloud engineering teams
• You effectively assess then convey security risks and mitigation recommendations to technical as well as non-technical stakeholders
• You are a subject matter expert in Microsoft security technologies
• Assist with the implementation of access/identity management, vulnerability assessments, penetration testing, infrastructure and regulatory compliance with privacy laws
• Assist with Azure Sentinel Incident response and investigations. Configure Log Analytics workspaces for incident investigation and alerting for identified threats 

Years of Relevant Experience:

• 7+ years of scripting and/or object oriented language development for system/resource automation
• 4+ years public IaaS/PaaS cloud security experience
• 4+ years managing Identity and Access Management systems
• Experience building, deploying, monitoring, alerting and managing container orchestration systems
• Experience with Azure Policy, Security Center and Azure Sentinel 

Required Skills:

• Azure Kubernetes Services and/or OpenShift secure cluster builds
• DevOps and CI/CD tool chains (i.e. Jenkins, Spinnaker, Azure DevOps and developer services)
• Expertise building, deploying, monitoring, and managing container orchestration systems (e.g. Azure, AWS, Google Cloud)
• Expertise in container security tooling/technologies
• Proficiency implementing Azure Kubernetes Services and/or OpenShift security solutions for Container Secrets, Master, Node and Network Security
• Knowledge of information security standards (NIST, ISO, GDPR, etc) 

Desired Skills:

• Microsoft Azure and/or RedHat certifications
• Experience with NoSQL Technology (e.g. Cassandra, MongoDB, HBase, DynamoDB etc.)
• Security tooling for Container orchestration systems (i.e. Docker, Kubernetes, OpenShift, Cloud Foundry, GitHub). 

Education Required:

• B.S. in Computer Science (or equivalent experience)
• GSEC (or other GIAC certification) or CISSP (plus)