Job Requirements
Hire a
hands-on DevSecOps Engineer to secure
native Kubernetes deployments across private infrastructure and Azure (AKS) for mission-critical
IIoT platforms. The role is responsible for
embedding security into platform, pipelines, and code, with direct ownership of
vulnerability remediation in Python-based containerized applications.
Why This Role Matters
- Critical to securing industrial (IIoT) workloads, where downtime and breaches have operational and safety impact
- Drives secure-by-design Kubernetes platforms across hybrid environments
- Ensures compliance with SOC 2 and IEC 62443 standards
- Reduces risk through proactive vulnerability detection and hands-on remediation
Work Experience
Key Responsibilities
- Secure Kubernetes (on-prem + Azure AKS) environments (cluster hardening, RBAC, network policies)
- Integrate security into CI/CD pipelines (SAST, DAST, SCA, container & IaC scanning)
- Implement advanced security controls:
- mTLS and service-to-service encryption
- Network segmentation / partitioning
- Secure tunneling & Zero Trust architecture
- Own end-to-end vulnerability lifecycle:
- Identification → prioritization → hands-on remediation (Python) → validation
- Perform threat modeling, security reviews, and penetration testing
- Drive compliance alignment with:
- SOC 2 (Security, Availability, Confidentiality)
- IEC 62443 (industrial security)
Must-Have Qualifications
- 8+ years in DevSecOps / Kubernetes / Cloud
- Strong hands-on expertise in:
- Kubernetes (native)
- Container security & runtime protection
- CI/CD security integration
- Programming (mandatory):
- Strong Python development skills
- Proven ability to fix security vulnerabilities in application code and containers
- Deep understanding of:
- mTLS, service mesh (Istio/Linkerd)
- Network segmentation & Zero Trust
- Vulnerability management & exploit remediation
Certification
- Certified Kubernetes Security Specialist (CKS)
Domain & Compliance Expertise
- Experience in IIoT / OT environments (preferred but highly valuable)
- Strong knowledge of:
- SOC 2 compliance frameworks
- IEC 62443 / industrial cybersecurity standards
What Success Looks Like (6–12 Months)
- Hardened Kubernetes platforms across private + Azure environments
- Fully integrated DevSecOps pipelines with automated security controls
- Measurable reduction in critical vulnerabilities and remediation time
- Production-grade implementation of:
- mTLS-based secure service communication
- Network segmentation for IIoT workloads
- Audit-ready posture for SOC 2 and IEC compliance
Ideal Candidate Profile
- Engineer first mindset (builds & fixes, not just advises)
- Strong at debugging, coding, and system-level problem solving
- Comfortable operating in regulated, high-stakes industrial environments
- Able to balance security, reliability, and delivery speed.
