Hello,
My name is Ashok , from ECHO IT SOLUTIONS INC. I am reaching out to you on an exciting job opportunity with one of our clients. Please go through the description once and get back to me with your updated resume
Security Engineer
Bothell, WA – On Site
Security Engineers – with primary focus on Cloud Security with Kubernetes combination
NEED PROFILES WITH 12+ YEARS OF EXPERIENCE WITH RELEVANT SKILLS – NEED CLOUD SECURITY ENGINEERS WITH EXP IN A COMBINATION OF SKILLS – CLOUD, KUBERNETES, AWS, AZURE, GCP, DEVSECOPS, GITHUB ETC, VAULT COMBINATION.
Resumes without exp in the above or any experience with this will be rejected
Responsible for planning, designing, testing and implementing computer and network security infrastructure design and implementation for project including Cloud-Native container as a service.
Required skills
- Deep understanding of cloud computing principles, including virtualization, containerization, microservices, and serverless computing; Risk Management, RHCOS security, container security, Kubernetes security, IAM security, network security, auditing, encryption, secrets management and data protection, securing CI/CD
- Analyze environments to identify both technical and operational challenges while making recommendations and developing solutions for improvement
- Lead complex or high severity troubleshooting and incident/problem resolutions with other security or cloud teams
- Maintain knowledge of current developments in cloud, CaaS and cybersecurity, maintaining of threats to It environments
- Bachelor’s degree in IT, Cybersecurity or related field or equivalent experience
- 5+ years of experience in Information security with 4+ years of experience in cloud security
- 3+ years of experience of cloud container security experience.
- Experience with cloud infrastructure as code tools such as Terraform, CloudFormation, and Azure Resource Manager.
- Observability: Tracing/Metrics/Logs and Dashboards for Platform and Application workloads (Promethius, Grafana, Vector Openshift logging)
- Experience working in DevSecOps, including knowledge and experience enforcing a secure software development lifecycle.(Github, Gitea, Gitguardian, )
- Experience with static container scanning Trivy, Snyk. sBOM (Bill of Material): Syft/Grype
- Experience with runtime container security, Falco, Red Hat ACS
- Experience with Red Hat OpenShift and Openstack cloud platforms, Advanced cluster security, Advanced cluster management
- Experience with Policy/Regulation compliance: OPA, Red Hat ACS, Kyverno
- Strong knowledge of hybrid cloud, AWS, GCP, Azure and Kurbenetes
- Service Mesh isolation
- Vulnerability and threat management
- Application pen testing
- Hands on experience with HashiCorp Vault, Cyberark or similar (PAM, secrets, certificate management platform)
- Experience working in DevSecOps, including knowledge and experience enforcing a secure software development lifecycle.
- Static Container Scanning: Trivy, Snyk. sBOM (Bill of Material): Syft/Grype
- Reporting/Observability: Grafana, Prometheus, Red Hat Advanced Cluster Security.\
- Professional certifications CISSP, CEH, CDP (Certified DevSecOps Professional)