Cyber Security Expert

Hire a hands-on DevSecOps Engineer to secure native Kubernetes deployments across private infrastructure and Azure (AKS) for mission-critical IIoT platforms. The role is responsible for embedding security into platform, pipelines, and code, with direct ownership of vulnerability remediation in Python-based containerized applications.

Why This Role Matters

• Critical to securing industrial (IIoT) workloads, where downtime and breaches have operational and safety impact
• Drives secure-by-design Kubernetes platforms across hybrid environments
• Ensures compliance with SOC 2 and IEC 62443 standards
• Reduces risk through proactive vulnerability detection and hands-on remediation

Key Responsibilities

• Secure Kubernetes (on-prem + Azure AKS) environments (cluster hardening, RBAC, network policies)
• Integrate security into CI/CD pipelines (SAST, DAST, SCA, container & IaC scanning)
• Implement advanced security controls:
• mTLS and service-to-service encryption
• Network segmentation / partitioning
• Secure tunneling & Zero Trust architecture
• Own end-to-end vulnerability lifecycle:
• Identification prioritization hands-on remediation (Python) validation
• Perform threat modeling, security reviews, and penetration testing
• Drive compliance alignment with:
• SOC 2 (Security, Availability, Confidentiality)
• IEC 62443 (industrial security)

Must-Have Qualifications

• 8+ years in DevSecOps / Kubernetes / Cloud
• Strong hands-on expertise in:
• Kubernetes (native)
• Container security & runtime protection
• CI/CD security integration
• Programming (mandatory):
• Strong Python development skills
• Proven ability to fix security vulnerabilities in application code and containers
• Deep understanding of:
• mTLS, service mesh (Istio/Linkerd)
• Network segmentation & Zero Trust
• Vulnerability management & exploit remediation

Certification

• Certified Kubernetes Security Specialist (CKS)

Domain & Compliance Expertise

• Experience in IIoT / OT environments (preferred but highly valuable)
• Strong knowledge of:
• SOC 2 compliance frameworks
• IEC 62443 / industrial cybersecurity standards

What Success Looks Like (6-12 months)

• Hardened Kubernetes platforms across private + Azure environments
• Fully integrated DevSecOps pipelines with automated security controls
• Measurable reduction in critical vulnerabilities and remediation time
• Production-grade implementation of:
• mTLS-based secure service communication
• Network segmentation for IIoT workloads
• Audit-ready posture for SOC 2 and IEC compliance

Ideal Candidate Profile

• Engineer first mindset (builds & fixes, not just advises)
• Strong at debugging, coding, and system-level problem solving
• Comfortable operating in regulated, high-stakes industrial environments
• Able to balance security, reliability, and delivery speed.