confidential client
6 month contract term with potential for renewal or hire.
Hybrid in Phoenix, AZ (3 days onsite)
W2 role
NO C2C
The Cloud Security Engineering group is responsible for building and delivering technology that integrates security seamlessly through automation and collaboration across Technology Risk, Information Security, and various Technology teams. As an Information Security Analyst specializing in Kubernetes Security, you will design and implement cloud infrastructure security requirements across cloud platforms, containers, networks, and storage tiers to support the enterprise's Hybrid Multi-Cloud journey. Your focus will be on automating security policies and implementing guardrails to enable secure cloud adoption.
This role requires strong problem-solving skills, the ability to manage multiple projects, and a proactive approach to security challenges. You will work closely with Cloud Security Governance, Cloud Security Operations, and other key teams to deliver security-as-code solutions, ensuring automation, zero-touch security, and robust infrastructure security measures.
Key Responsibilities:
- Develop and implement cloud security engineering solutions for private and public multi-cloud environments.
- Provide security and engineering expertise for Cloud Programs, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Policy as Code (PaC).
- Collaborate with enterprise architects and subject matter experts to design and deploy security architecture solutions.
- Define and enforce container security policies across Kubernetes clusters, including VMs, Containers, CNI, CSI, and Mesh architectures.
- Utilize Terraform Sentinel to write security rules and policies, ensuring compliance across cloud environments.
- Define and implement security policies using OPA Gatekeeper.
- Implement service control and security policies, prioritizing GCP, followed by Azure and AWS.
- Automate security controls and processes using infrastructure-as-code principles.
- Present key security ideas and findings to both technical and non-technical stakeholders.
Educational Requirements:
- Bachelor's Degree in Computer Science, Software Engineering, Electrical & Computer Engineering (ECE), or a related Information Security field.
Required Skills & Experience:
- Terraform Sentinel Expertise: 2+ years of experience writing Terraform rules and Sentinel policies.
- Cloud Security Policy Management: Experience with service control or security policies in GCP (preferred), Azure, and AWS.
- OPA Gatekeeper: Hands-on experience defining security policies.
- Container Security: Experience securing Kubernetes environments.
- Certified Kubernetes Administrator (CKA) or equivalent work experience.
- 3+ years of experience in Information Security roles.
- 3+ years of Policy as Code (PaC) experience.
- Strong understanding of cloud security fundamentals and data protection controls.
- Experience validating and verifying cloud configurations.
- Knowledge of security configuration management, endpoint security, and secrets management in cloud applications.
- Proficiency in defining resource configurations using Terraform or Helm.
- Familiarity with DevOps and DevSecOps principles.
Nice-to-Have Skills:
- Experience with Golang or Python for security automation.
- Certified Kubernetes Security Specialist (CKS).
- Additional security or cloud certifications such as CISSP, CISM, or CCSP.