Job Requirements
Hire a hands-on DevSecOps Engineer to secure native Kubernetes deployments across private infrastructure and Azure (AKS) for mission-critical IIoT platforms. The role is responsible for embedding security into platform, pipelines, and code, with direct ownership of vulnerability remediation in Python-based containerized applications.
Why This Role Matters
-
Critical to securing industrial (IIoT) workloads, where downtime and breaches have operational and safety impact
-
Drives secure-by-design Kubernetes platforms across hybrid environments
-
Ensures compliance with SOC 2 and IEC 62443 standards
-
Reduces risk through proactive vulnerability detection and hands-on remediation
Work Experience
Key Responsibilities
-
Secure Kubernetes (on-prem + Azure AKS) environments (cluster hardening, RBAC, network policies)
-
Integrate security into CI/CD pipelines (SAST, DAST, SCA, container & IaC scanning)
-
Implement advanced security controls:
-
mTLS and service-to-service encryption
-
Network segmentation / partitioning
-
Secure tunneling & Zero Trust architecture
-
Own end-to-end vulnerability lifecycle:
Identification prioritization- hands-on remediation (Python) validation
-
Perform threat modeling, security reviews, and penetration testing
-
Drive compliance alignment with:
-
SOC 2 (Security, Availability, Confidentiality)
-
IEC 62443 (industrial security)
Must-Have Qualifications
-
8+ years in DevSecOps / Kubernetes / Cloud
-
Strong hands-on expertise in:
-
Kubernetes (native)
-
Container security & runtime protection
-
CI/CD security integration
-
Programming (mandatory):
-
Strong Python development skills
-
Proven ability to fix security vulnerabilities in application code and containers
-
Deep understanding of:
-
mTLS, service mesh (Istio/Linkerd)
-
Network segmentation & Zero Trust
-
Vulnerability management & exploit remediation
Certification
-
Certified Kubernetes Security Specialist (CKS)
Domain & Compliance Expertise
-
Experience in IIoT / OT environments (preferred but highly valuable)
-
Strong knowledge of:
-
SOC 2 compliance frameworks
-
IEC 62443 / industrial cybersecurity standards
What Success Looks Like (6–12 months)
-
Hardened Kubernetes platforms across private + Azure environments
-
Fully integrated DevSecOps pipelines with automated security controls
-
Measurable reduction in critical vulnerabilities and remediation time
-
Production-grade implementation of:
-
mTLS-based secure service communication
-
Network segmentation for IIoT workloads
-
Audit-ready posture for SOC 2 and IEC compliance
Ideal Candidate Profile
-
Engineer first mindset (builds & fixes, not just advises)
-
Strong at debugging, coding, and system-level problem solving
-
Comfortable operating in regulated, high-stakes industrial environments
-
Able to balance security, reliability, and delivery speed.
