Security Engineer

Overview:
Role: - Security Engineers – with primary focus on Cloud Security with Kubernetes combination            
Location: -  Bothell, WA – Day 1 ONSITE

NEED PROFILES WITH 12+ YEARS OF EXPERIENCE WITH RELEVANT SKILLS – NEED CLOUD SECURITY ENGINEERS WITH EXP IN A COMBINATION OF SKILLS – CLOUD, KUBERNETES, AWS, AZURE, GCP, DEVSECOPS, GITHUB ETC, VAULT COMBINATION.

Security Engineer – Cloud Security & Kurbenetes

Frisco, Texas

Responsible for planning, designing, testing and implementing computer and network security infrastructure design and implementation for project including Cloud-Native container as a service.

Required skills

Deep understanding of cloud computing principles, including virtualization, containerization, microservices, and serverless computing; Risk Management, RHCOS security, container security, Kubernetes security, IAM security, network security, auditing, encryption, secrets management and data protection, securing CI/CD 
Analyze environments to identify both technical and operational challenges while making recommendations and developing solutions for improvement
Lead complex or high severity troubleshooting and incident/problem resolutions with other security or cloud teams
Maintain knowledge of current developments in cloud, CaaS and cybersecurity, maintaining of threats to It environments
Bachelor’s degree in IT, Cybersecurity or related field or equivalent experience
5+ years of experience in Information security with 4+ years of experience in cloud security
3+ years of experience of cloud container security experience.
Experience with cloud infrastructure as code tools such as Terraform, CloudFormation, and Azure Resource Manager.
Observability: Tracing/Metrics/Logs and Dashboards for Platform and Application workloads (Promethius, Grafana, Vector Openshift logging)
Experience working in DevSecOps, including knowledge and experience enforcing a secure software development lifecycle.(Github, Gitea, Gitguardian, )
Experience with static container scanning  Trivy, Snyk. sBOM (Bill of Material): Syft/Grype
Experience with runtime container security, Falco, Red Hat ACS
Experience with Red Hat OpenShift and Openstack cloud platforms, Advanced cluster security, Advanced cluster management
Experience with Policy/Regulation compliance: OPA, Red Hat ACS, Kyverno
Strong knowledge of hybrid cloud, AWS, GCP, Azure and Kurbenetes
Service Mesh isolation
Vulnerability and threat management
Application pen testing
Hands on experience with HashiCorp Vault, Cyberark or similar (PAM, secrets, certificate management platform)
Experience working in DevSecOps, including knowledge and experience enforcing a secure software development lifecycle.
Static Container Scanning: Trivy, Snyk. sBOM (Bill of Material): Syft/Grype
Reporting/Observability: Grafana, Prometheus, Red Hat Advanced Cluster Security
Professional certifications CISSP, CEH, CDP (Certified DevSecOps Professional)