9130 - Cloud Container Security Technical Lead

Job Posting Title: Cloud Container Security Technical Lead

Worksite Location: Remote/Telework

Clearance: Top Secret/(T5)Single Scope Background Investigation (SSBI)

Start Date: Contingent upon contract award

IndraSoft Inc. is seeking a highly qualified Senior to SME level Cloud Container Security Technical Lead with an active Top Secret clearance to support our DoD client located in Seaside CA. The selected highly motivated candidate will implement configure manage and monitor cloud container security protecting cloud native and multicloud applications and infrastructure across two highavailability cloud environments. At this time our client is running Kubernetes cluster as part of the DevSecOps processes. The successful candidate will leverage demonstrated experience in DevSecOps with proven subject matter expertise in Stackrox and Kubernetes cloud container products to support DoD cybersecurity requirements and objectives.

Qualifications Required:

• Must be a US citizen possess a DoD Top Secret clearance: Minimum vetting Tier 5 (T5)Single Scope Background Investigation (SSBI)

• Active DoD 8570 IAT Level 3 certification for compliance including at least one of the following certifications in good standing: CASP CE CCNP Security CISA CISSP (or Associate) GCED GCIH

• Computing Environment Certification

• Bachelors degree and 10 years of Information Technology or Cybersecurity related experience
• 5 years of experience with security operations and management in multicloud computing and containerized environments specifically secure operation in Kubernetes
• Ability to communicate effectively with government and contract leadership while conveying highly technical concepts to both technical and nontechnical stakeholders
• Capacity to thrive in a complex fast paced environment with competing demands while delivering consistent highquality commitment to missioncritical systems and solutions
• Excellent analytic skills including qualitative and quantitative data analysis to support and defend datadriven decisionmaking regarding system threats vulnerabilities and risk
• Knowledge of DoD cybersecurity policies practices and requirements

Desired Qualifications:

• Cloud certifications
• Experience in an enterprise environment orchestrating multiple pods and containers
• Handson experience with container security tools such as Anchore Prisma (Twistlock) or StackRox
• Experience with other cloud container solutions such as Docker Containered or Rancher
• Experience configuring disaster recovery (DR) environments

Job Description:

To perform this job successfully an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge skill and/or ability required.

Key Responsibilities:

• Serve as the Technical Lead for Cloud Container Security in multiple cloud environments

• Employ an advanced knowledge of container security tools and experience with Kubernetes.

• Leverage current handson experience in migrating onpremises applications to cloud.
• Apply specialized container security knowledge to develop solutions for onpremises hybridcloud and multicloud environments.
• Customize policies rules and alerts to comply with established policies and settings.
• Manage container segmentation polices
• Enhance security visibility through the development of new policies rules and alerts
• Provide full operational support for container and cloud security tools.
• Develop test and maintain containerized applications security
• Work with cybersecurity operations solution engineers and DevSecOps engineers to continuously advance configurations
• Coordinate with log and analysis teams to tailor collected data to maximize logging platform effectiveness
• Research design and implement cybersecurity solutions to protect sensitive information in a cloud environment.
• Maintain awareness of Kubernetes cybersecurity threats and best practices to enable securing and hardening Kubernetes clusters at scale
• Ensure Malware and Threat prevention functionality is enabled on container hosts environments and segments

• Perform Baseline Image validation of new container template images. Validate all unnecessary packages have been removed from image and STIGs have been applied to image.

• Coordinate with log and analysis teams to tailor collected data to maximize logging platform effectiveness
• Support the integration of logs with DHRA DMDC DHA/NIWCS and CSSP logging solutions
• Ensure modules are in place for on the fly incident response and digital forensics

• Perform Vulnerability scans on container environments
• Ensure system backup and restore procedures are in place and operating
• Troubleshoot any connectivity or operational issues
• Perform vulnerability and patch management on cloud security containers
• Access: Manage user accounts and roles
• Create and maintain Standard Operating Procedures (SOP)
• Facilitate vendor support as needed
• Metrics/Reporting
  • Create dashboards to monitor significant events traffic and data collection
  • Provide weekly Scanning and Monitoring reports
  • Create and maintain Cloud Container Security topology diagram
  • Create weekly monthly and inprogress review presentations as needed

Physical Demands:

While performing duties of the job the successful candidate will be exposed to normal demands of an office environmentincluding:

Sitting and working on a computer for long continuous periods each day; effective communications by telephone email and facetoface; standing walking and sitting; handling and feeling objects or controls; reaching; talking and hearing; lifting and/or moving up to 20 pounds; and specific vision abilities including close vision distance vision color vision peripheral vision depth perception and the ability to adjust and focus.

Work Environment:The noise level in the work environment is usually moderate.