Mirantis is an open cloud company that helps organizations achieve digital self determination by giving them complete control over their strategic infrastructure. The company combines intelligent automation and cloud-native expertise for managing and operating virtual machines, containers, Kubernetes, and cloud environments.
We empower developers and innovators to create extraordinary products and services by automating the discovery, integration, and operation of the best cloud and open source technologies for their unique needs.
https://www.mirantis.com/
Job DescriptionWe are seeking a talented and experienced Product Security Engineer specializing in Kubernetes to join our team in PoznaĆ, Poland. In this role, you will be responsible for ensuring the security of our containerized environments and Kubernetes clusters, conducting penetration testing, and driving our security initiatives forward.
Perform penetration testing on Kubernetes workloads and containerized environments to identify and address vulnerabilitiesStrengthen the security of Kubernetes clusters by evaluating configurations, implementing best practices, and addressing runtime security concernsPrioritize and remediate vulnerabilities across Kubernetes clusters and related components, collaborating closely with engineering teamsDrive efforts to meet and maintain industry security certifications (e.g., SOC 2, ISO 27001) and ensure alignment with Kubernetes security benchmarksWork cross-functionally with product and engineering teams to embed security throughout the development lifecycleCreate and maintain a long-term security strategy that addresses emerging threats and aligns with company-wide security initiativesMonitor developments in Kubernetes security and implement relevant improvementsSupport sales and customer teams by explaining security features and addressing customer concerns about security or complianceContribute to the development of secure coding practices and provide feedback on vulnerability fixesQualificationsMinimum of 5 years of experience in application security, penetration testing, or a related role, with a focus on Kubernetes or containerized environmentsDeep understanding of Kubernetes architecture, including components like kubelet, kube-apiserver, etcd, and networking within Kubernetes clustersProven ability to conduct penetration tests in Kubernetes and containerized environments, identifying and remediating vulnerabilitiesStrong programming or scripting skills (e.g., Python, Go) for automating security testing and remediation in Kubernetes environmentsExperience with cloud platforms (AWS, Azure, GCP) and their Kubernetes offerings (e.g., EKS, AKS, GKE)Knowledge of compliance standards and security frameworks relevant to Kubernetes environmentsFamiliarity with DevSecOps practices and CI/CD pipeline security integrationExcellent communication skills for engaging with internal stakeholders and external customersAnalytical mindset with a detail-oriented approach to problem-solvingCollaborative spirit and ability to work effectively in cross-functional teamsPreferred Certifications:
Offensive Security Certified Professional (OSCP)GIAC Kubernetes and Cloud-Native Security (GKS)Certified Kubernetes Security Specialist (CKS)Offensive Security Web Expert (OSWE)GIAC Web Application Penetration Tester (GWAPT)Additional Qualifications:
Experience contributing to or maintaining open-source Kubernetes-related projectsProven track record of implementing innovative security solutions in complex environmentsAdditional InformationWhat does Mirantis offer you?
Work with an established Silicon Valley leader in the cloud infrastructure industry.Work with exceptionally passionate, talented and engaging colleagues, helping Fortune 500 and Global 2000 customers implement next-generation cloud technologies.Be a part of cutting-edge, open-source innovation.Thrive in the high-energy environment of a young company where openness, collaboration, risk-taking, and continuous growth are valued.Receive a competitive compensation package with strong benefits planWe are a Leader for Container Management in G2 (#2 after AWS)!