9130 - Cloud Container Security Technical Lead

Job Posting Title:          Cloud Container Security Technical Lead

Worksite Location:       Remote/Telework        

Clearance:                    Top Secret/(T5)-Single Scope Background Investigation (SSBI)

Start Date:                    Contingent upon contract award

IndraSoft, Inc. is seeking a highly qualified Senior to SME level Cloud Container Security Technical Lead with an active Top Secret clearance to support our DoD client, located in Seaside, CA.  The selected, highly motivated candidate will implement, configure, manage, and monitor cloud container security protecting cloud native and multi-cloud applications and infrastructure across two high-availability cloud environments.  At this time, our client is running Kubernetes cluster as part of the DevSecOps processes.  The successful candidate will leverage demonstrated experience in DevSecOps with proven subject matter expertise in Stackrox and Kubernetes cloud container products, to support DoD cybersecurity requirements and objectives.

Qualifications Required:

• Must be a US citizen, possess a DoD Top Secret clearance: Minimum vetting Tier 5 (T5)-Single Scope Background Investigation (SSBI)

• Active DoD 8570 IAT Level 3 certification for compliance, including at least one of the following certifications in good standing: CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH

• Computing Environment Certification

• Bachelor’s degree and 10+ years of Information Technology or Cybersecurity related experience
• 5+ years of experience with security operations and management in multi-cloud computing and containerized environments, specifically secure operation in Kubernetes
• Ability to communicate effectively with government and contract leadership, while conveying highly technical concepts to both technical and nontechnical stakeholders
• Capacity to thrive in a complex, fast paced environment with competing demands while delivering consistent, high-quality commitment to mission-critical systems and solutions
• Excellent analytic skills, including qualitative and quantitative data analysis to support and defend data-driven decision-making regarding system threats, vulnerabilities, and risk
• Knowledge of DoD cybersecurity policies, practices, and requirements

Desired Qualifications:

• Cloud certifications
• Experience in an enterprise environment orchestrating multiple pods and containers
• Hands-on experience with container security tools such as Anchore, Prisma (Twistlock), or StackRox
• Experience with other cloud container solutions, such as Docker, Containered, or Rancher
• Experience configuring disaster recovery (DR) environments

Job Description:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.  The requirements listed below are representative of the knowledge, skill, and/or ability required. 

Key Responsibilities:

• Serve as the Technical Lead for Cloud Container Security in multiple cloud environments

• Employ an advanced knowledge of container security tools and experience with Kubernetes.

• Leverage current hands-on experience in migrating on-premises applications to cloud.
• Apply specialized container security knowledge to develop solutions for on-premises, hybrid-cloud, and multi-cloud environments.
• Customize policies, rules, and alerts to comply with established policies and settings.
• Manage container segmentation polices
• Enhance security visibility through the development of new policies, rules, and alerts
• Provide full operational support for container and cloud security tools.
• Develop, test, and maintain containerized applications security
• Work with cybersecurity operations, solution engineers and DevSecOps engineers to continuously advance configurations
• Coordinate with log and analysis teams to tailor collected data to maximize logging platform effectiveness
• Research, design, and implement cybersecurity solutions to protect sensitive information in a cloud environment.
• Maintain awareness of Kubernetes cybersecurity threats and best practices to enable securing and hardening Kubernetes clusters at scale
• Ensure Malware and Threat prevention functionality is enabled on container hosts, environments, and segments

• Perform Baseline Image validation of new container template images. Validate all unnecessary packages have been removed from image and STIGs have been applied to image.

• Coordinate with log and analysis teams to tailor collected data to maximize logging platform effectiveness
• Support the integration of logs with DHRA, DMDC, DHA/NIWCS, and CSSP logging solutions
• Ensure modules are in place for on the fly incident response and digital forensics

• Perform Vulnerability scans on container environments
• Ensure system backup and restore procedures are in place and operating
• Troubleshoot any connectivity or operational issues
• Perform vulnerability and patch management on cloud security containers
• Access: Manage user accounts and roles
• Create and maintain Standard Operating Procedures (SOP)
• Facilitate vendor support, as needed
• Metrics/Reporting
  • Create dashboards to monitor significant events, traffic and data collection
  • Provide weekly Scanning and Monitoring reports
  • Create and maintain Cloud Container Security topology diagram
  • Create weekly, monthly and in-progress review presentations, as needed

Physical Demands: 

While performing duties of the job, the successful candidate will be exposed to normal demands of an office environment, including:

Sitting and working on a computer for long, continuous periods each day; effective communications by telephone, email, and face-to-face; standing, walking, and sitting; handling and feeling objects or controls; reaching; talking and hearing; lifting and/or moving up to 20 pounds; and specific vision abilities including close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust and focus.

Work Environment: The noise level in the work environment is usually moderate.