OT Security Consultant improving security for operational technology and industrial control systems. Collaborating with clients to enhance their OT security posture and governance in critical infrastructure.
About the role
- Technical security lead managing security operations for Kong Cloud. Architecting advanced security solutions and mentoring engineers in a fast-paced environment.
Responsibilities
- Act as the lead subject matter expert for the Kong Cloud Security Operations.
- Architect and implement next-generation WAF, IDS, and IPS capabilities at the gateway level to protect against OWASP Top 10, zero-day exploits, and sophisticated API abuse.
- Design and implement "Zero Trust" security models that operate seamlessly across hybrid and multi-cloud environments (AWS, Azure, GCP, On-prem).
- Partner with Product and Architecture leads to define the multi-year security roadmap for Kong Gateway, balancing the needs of the OSS community with Enterprise requirements.
- Lead the response to complex, multi-faceted security challenges—from supply chain vulnerabilities in open-source dependencies to high-stakes CVE remediations.
- Champion a "Security-First" culture by mentoring engineers on secure coding practices and influencing the long-term cybersecurity maturity of the entire organization.
Requirements
- 8+ years’ experience in Cybersecurity Engineering, with a focus on high-traffic infrastructure or API management.
- Extensive experience with Kong Gateway, Nginx, eBPF, or similar technologies.
- Expert-level knowledge of multi-cloud solution design, specifically securing traffic across disparate cloud providers and Kubernetes environments.
- Proven track record in designing/deploying WAF, IDS, and IPS systems at scale, with an understanding of signature-based vs. ML-based detection.
- Programming proficiency in Python, Go or Rust.
- Experience contributing to or maintaining open-source security projects is a significant asset.
- Ability to produce high-quality, high-performance security designs that do not compromise the "millisecond-latency" promise of the gateway.
Benefits
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cloud Security Engineer responsible for architecting secure cloud application infrastructure at QTS. Drive strategic security initiatives across public, private, and hybrid cloud environments to support growth.
Manager in Cyber Security & Regulatory Compliance overseeing IT security and compliance processes at C.H.BECK, a longstanding media group. Engaging in risk management and collaboration across departments.
Designs cybersecurity systems and frameworks for Navy Federal’s information security strategy. Collaborates with stakeholders, solving complex issues to enhance security architecture.
Werkstudent in process intelligence and information security, supporting various tasks in a hybrid role at Axians in Ulm, Germany.
Internship in Quality Management and Information Security helping with process optimization and data analysis at Axians in Germany.
Support in quality and information security management, optimizing processes in collaboration with departments. Create reports and help maintain documentation ensuring up - to - date records.
Workday Security Consultant serving as bridge between HR functional area and IT for technology solutions. Involves analysis, development, and maintenance of HRIS solutions.
IT Security Architect responsible for building security concepts and enhancing company - wide safety measures. Contributes to reliable global software solutions in an international team context.
Cyber Security Service Performance Manager managing the delivery of cyber security services within TfL. Focusing on service transition, contract management, and stakeholder engagement.