Responsibilities
- Conduct security evaluations of infrastructure in cloud, containerized, and Kubernetes environments.
- Analyze Infrastructure as Code configurations such as Terraform, Bicep, ARM, Helm, and Kubernetes manifests to detect security flaws and configuration errors.
- Evaluate practices related to CI/CD pipelines, handling of secrets, encryption, logging, monitoring, and access controls.
- Examine security mechanisms in Kubernetes and container deployments, including workload segregation, role-based access, network policies, and runtime protection.
- Perform follow-up testing to confirm resolution of previously identified vulnerabilities and effectiveness of countermeasures.
- Document findings with supporting evidence, risk ratings, and actionable recommendations for remediation.
- Provide technical guidance to engineering and architecture teams on secure infrastructure design and hardening techniques.