More jobs:
Job Description & How to Apply Below
Job Description:
You will work with
This team safeguards the company's digital assets and ensuring robust cyber resilience. They cover various aspects of cybersecurity, including threat and exposure management, security engineering, cyber incident response, security Dev Ops, and insider threat. Each team has specific responsibilities and areas of focus, collaborating closely with other digital security teams and business units to ensure a cohesive approach to cybersecurity.
Let me tell you about the role
We are looking for an innovative Information Security Engineering Specialist to define, implement, govern, and strengthen our global container environment security across our multi-cloud platform, supporting critical business operations. In this role, you will focus on Container Security with a deep technical background in cloud-native ecosystems to govern and drive the protection of our containerized environments.
The ideal candidate brings a hands-on technical expertise for securing the container lifecycle - build, ship, and run - and will partner with the platform engineering, Secure Dev Ops, Application Security and SRE teams to design and implement secure and automated controls that continuously reduce the risk without slowing down delivery. You will ensure compliance with industry regulations, safeguard critical data, and enable secure integration across diverse business environments.
What you will deliver
Container Security Advisory & Strategy – Act as the Container Security Specialist, supporting Dev Ops and platform teams on secure-by-design principles. Align container security strategy with the global business goals and regulatory requirements.
Policy, Standards & Governance – Improve the global container security standards, baseline, and Policy-as-code tailored for Oil & Gas, covering critical infrastructure protection aligned with NIST SP 800-190, and other security principles. Implement and improve governance for sophisticated containerized environments supporting global operations. Conduct detailed security assessments and reviews of critical containerized infrastructure.
Engineering & Architecture – Build and implement security policies for Kubernetes (K8s) clusters, including RBAC, Network Policies, and Pod Security Standards. Review CI/CD pipelines for vulnerabilities in container images and third-party libraries. Handle runtime container security tools to detect and intercept anomalous behavior. Implement and enforce compliance to ensure 'Secure by Build' environment.
Collaboration & Relationships – Build positive relationships across business units and technology ecosystems.
Safety & Compliance – Champion operational safety and digital security by ensuring container security policies reinforce compliance.
What you will need to be successful (experience and qualifications)
9+ years of cyber security experience, including 5+ years of experience in leading a container security engineering.
Extensive experience on one of the following areas:
Container Security, image scanning, SBOM, dependency control, runtime security, eBPF tools, Cloud Security (AWS and Azure), etc.
Deep experience in crafting container security solutions for reliable and scalable infrastructure, cloud and data products in sophisticated environments.
Experience with automation and scripting for security tasks (e.g., IaC, CI/CD integration) and security tooling (e.g., CNAPP such as Prisma Cloud, Aqua, Wiz, and others).
Deep knowledge and hands-on experience in technologies across container security lifecycle stages.
Foundational knowledge of security standards, industry laws, and regulations such as Payment Card Industry Data Security Standards (PCI-DSS), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) and Sarbanes-Oxley (SOX)
Strong collaborator and ability to maneuver through technical influence.
Continuous learning and improvement approach.
Plus:
A degree or equivalent experience in computer science or engineering from a recognized institute.
Certifications like CKS, CKA, CKAD, KCNA, AWS / Azure Security Specialty or professional, CISSP or CCSP.
Development experience in one or more…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×