Mission

Embed zero-trust principles and ensure continuous compliance across the Rancher-managed Kubernetes ecosystem, aligned with ADNOC security baselines and CIS benchmarks.

Key Responsibilities

• Deploy and optimize tools like NeuVector, Aqua, or Prisma Cloud for:
• Container image and vulnerability scanning
• Runtime threat detection and defense
• Define and enforce admission controller policies using OPA or Kyverno, aligned with:
• CIS Kubernetes Benchmark v1.23
• ADNOC security standards
• Integrate Kubernetes audit logs with ADNOC’s SIEM platforms (e.g., Splunk, IBM QRadar).
• Monitor and respond to security alerts and incidents in real time.
• Coordinate and conduct quarterly penetration tests, and manage red/blue team exercises for proactive threat hunting.

Core Skills & Tools

• Security Tools: NeuVector, Aqua, Prisma Cloud, Falco, sysdig Secure, Trivy, Snyk
• Policy & Compliance: Kyverno, OPA, CIS Benchmarks, ADNOC-IS
• Logging & Monitoring: Kubernetes audit logs, Splunk, Q-Radar
• Secrets & Encryption: HashiCorp Vault, SSL/TLS, PKI infrastructure

Requirements

• 5+ years of experience in security engineering, with 2+ years focused on container and Kubernetes security.
• Certifications (Required):
• CKS (Certified Kubernetes Security Specialist) or
• GIAC GCLD (Cloud Security)
• Preferred:
• CISSP or OSCP
• Experience with ADNOC-compliant environments