MTS IV CTI0034 [Platform]

About ColorTokens

AtColorTokens we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happenbut with our cutting-edgeColorTokens Xshield platform companies can minimize the impact of breaches by preventing the lateral spread of ransomware and advanced malware. We enable organizations to continue operating while breaches are contained ensuring critical assets remain protected.

Our innovative platform provides unparalleled visibility into traffic patterns between workloads OT/IoT/IoMT devices and users allowing businesses to enforce granular micro-perimeters swiftly isolate key assets and respond to breaches with agility. Recognized as aLeader in the Forrester Wave: Microsegmentation Solutions (Q3 2024) ColorTokens safeguards global enterprises and delivers significant savings by preventing costly disruptions.

Join us in transforming cybersecurity.

Learn more at.

Our culture

We foster an environment that values customer focus innovation collaboration mutual respect and informed decision-making. We believe in alignment and empowerment so you can own and drive initiatives autonomously.

Self-starters and highly motivated individuals will enjoy the rewarding experience of solving complex challenges that protect some of the worlds impactful organizations - be it a childrens hospital or a city or the defense department of an entire country.

Role Overview

We are looking for a Senior Software Engineer to join our platform team and take ownership of our container infrastructure and cloud-native networking stack. You will work across Kubernetes networking policy enforcement eBPF-based tooling and service mesh technologies to deliver robust network segmentation and observability across diverse environments.

This is a hands-on engineering role with a high degree of autonomy. You will operate in a lean fast-moving team where initiative and adaptability matter more than process. If you are energised by hard infrastructure problems and want to build platforms that are secure observable and scalable this role is for you.

Roles and Responsibilities

• Design and maintain production-grade container orchestration platforms using Kubernetes Docker and related cloud-native tooling.
• Implement and operationalise network segmentation strategies across containerised environments leveraging service mesh technologies network policies and CNI capabilities.
• Evaluate and integrate policy-as-code frameworks such as Open Policy Agent for admission control runtime enforcement and compliance.
• Apply eBPF-based tooling for networking observability and security use cases including traffic visibility kernel-level filtering and runtime monitoring.
• Build and maintain monitoring logging and alerting stacks purpose-built for containerised and distributed environments.
• Define and implement ingress/egress controls network policy patterns and zero-trust networking principles within and across clusters.
• Collaborate with development and security teams to ensure consistent enforceable network boundaries across heterogeneous infrastructure.
• Troubleshoot complex distributed systems issues spanning networking layers container runtimes and orchestration control planes.
• Contribute to architecture decisions and build-vs-buy evaluations for platform and networking tooling.

Required Qualification

• 5 years of hands-on experience with container technologies (Docker containerd) and Kubernetes in production environments.
• Strong understanding of Kubernetes networking: CNI plugins network policies DNS ingress controllers and kube-proxy alternatives.
• Experience leveraging service mesh solutions to achieve network segmentation traffic management and mutual TLS across services.
• Working knowledge of eBPF and its practical applications in networking observability and security.
• Experience with policy enforcement tooling such as OPA/Rego for admission control and compliance-as-code.
• Solid understanding of distributed systems principles: fault tolerance consensus event-driven architectures and eventual consistency.
• Proficiency in at least one systems-level language (Go Rust C) and one scripting language (Python Bash).
• Experience with observability tooling: metrics distributed tracing and log aggregation in containerised environments.
• Strong foundation in networking fundamentals: TCP/IP DNS HTTP/gRPC load balancing firewalls and VPNs.

Preferred Qualification

• Experience with cloud platforms (AWS GCP Azure) and their managed Kubernetes offerings.
• Familiarity with AI/ML infrastructure and workload orchestration on Kubernetes.
• Contributions to open-source projects in the cloud-native ecosystem.
• Experience with GitOps workflows and infrastructure-as-code tools (Terraform Pulumi or similar).
• Background in firewall technologies network segmentation beyond containers and security compliance frameworks.

What we look for

Beyond technical skills we value the following traits and working style:

• Self-driven and autonomous: you take ownership from problem identification through to production delivery without needing to be directed.
• Comfortable with ambiguity and rapid context-switching in a fast-paced startup-style environment.
• A builder mindset you ship iteratively learn quickly and know when good enough is good enough.
• Collaborative with strong opinions loosely held; you challenge ideas constructively and welcome being challenged.
• Curious and adaptable with a genuine interest in the evolving cloud-native landscape.