Cybersecurity Cloud Engineer – Container Security

Requirements

Must have:– Proficient in both Windows and Linux administration and security fundamentals – Over 3 years of hands-on experience with Docker and Kubernetes (design, deployment, security hardening) – Proven track record in designing, implementing, and operationalizing technical controls in production settings – Strong understanding of container networking (CNI), service policies, identity/RBAC, and secrets management – Experience in integrating security into CI/CD processes (e.g., image scanning, policy gates, IaC checks) – Excellent technical writing capabilities (standards, procedures, diagrams) – Ability to work autonomously with minimal supervision;

strong sense of ownership and follow-through – Balances robust security measures with developer productivity and system uptime – Skilled in diagnosing complex production issues involving networking, policy, identity, and runtime – Capable of conveying trade-offs, documenting clearly, and influencing stakeholders – Driven to manage initiatives from end to end — requirements gathering, building, deploying, monitoring, and improving

Responsibilities:

• Serve as a hands-on Cyber Security Engineer focused on container security, developing standards/policies, designing and implementing controls, and supporting security measures across our infrastructure – Author, maintain, and disseminate container security standards, baseline configurations, and operational runbooks – Define control requirements for Kubernetes clusters and Docker environments (networking, RBAC, secrets, compliance, logging) – Engineer and deploy security controls unique to container operations across on-premises and cloud environments – Implement Kubernetes RBAC, Network Policies, Pod Security standards or alternatives, and admission controls (OPA/Gatekeeper/Kyverno) – Manage image security (registry governance, signing/verification, SBOM, vulnerability assessment) – Ensure runtime protection adhering to CIS benchmarks, syscall/behavior policies, workload isolation, and secrets management – Secure CI/CD integration by establishing gates for image scanning, IaC security checks, and policy initiatives – Oversee daily health and performance of deployed controls;
  
  troubleshoot issues related to clusters, workloads, and pipelines – Collaborate with platform engineering/SRE for triaging, remediation, and tuning policies without affecting delivery speed – Produce clear, actionable documentation: standards, architecture diagrams, procedures, FAQs, and guides – Provide training and guidance to engineering teams on adopting secure-by-default practices – Contribute to broader cybersecurity efforts such as vulnerability management, incident response for containerized workloads, audit support, and control assurance – Engage in threat modeling for new services and modifications – Manage daily workload by checking the SCRUM board for actionable items, participating in stakeholder meetings, and collaborating with security and infrastructure teams

Company:

At Software Guidance & Assistance, Inc. (SGA), we are committed to delivering top-notch technology and resource solutions with a personalized touch. As a women-owned business, we pride ourselves on tackling significant IT challenges with a boutique approach. Annually, we connect consultants with over 1,000 engagements, promoting collaborative efforts. Our diverse team operates on core values such as exceptional customer service, employee development, and unwavering quality and integrity.

We encourage you to bring your authentic self, pursue your passions, and thrive in your role with us. Our opportunities extend across various locations including La Vista (Omaha), NE, Atlanta, GA, Scottsdale, AZ, St Petersburg, FL, and Oakdale, MN.

#J-18808-Ljbffr