Qualifications

• Undergraduate degree in a related field or equivalent experience.
• Hands-on experience securing AWS containerized environments (ECS/EKS) and serverless workloads, with knowledge of Azure AKS and GCP GKE.
• Experience using Wiz for assessing and remediating cloud and container risks.
• Strong understanding of container lifecycle and runtime security concepts.
• Familiarity with CI/CD pipelines and cloud-native architectures.
• Experience with application security tools (SAST, SCA, IAST, DAST) is a plus.
• Certifications in cloud, containers, or DevSecOps are advantageous.

Responsibilities

• Lead container security efforts in AWS environments, focusing on ECS, EKS, and serverless technologies.
• Utilize Wiz to evaluate and mitigate risks across container and cloud configurations.
• Drive the implementation and enhancement of container security controls.
• Assess vulnerabilities in container images and deployment pipelines, ensuring engineering teams address them.
• Develop strategies to secure cloud-native workloads, extending protection to other cloud platforms when needed.
• Collaborate with engineering teams to enforce secure configurations and runtime protections.
• Identify automation opportunities to streamline container security processes.

Benefits

• Guidance and training provided on secure container development and best practices.
• Access to AI/ML-driven capabilities for threat detection and risk prioritization.
• Opportunities to gather metrics on container security posture and program maturity.
• Ability to partner with diverse teams for a collaborative approach to security.
• Support for maintaining documentation of security processes and tools.