IAM / IGA Security Engineer designing and implementing identity governance solutions. Collaborating with Security, IT, HR, and business stakeholders to ensure secure access governance.
About the role
- Software Security Engineer at Spectro Cloud focusing on securing Kubernetes-based platforms for AI infrastructure. Responsible for implementing security controls and managing incident responses across the platform.
Responsibilities
- Design, implement, and operate security controls for Kubernetes-based production platforms
- Harden containers, nodes, and cluster configurations to meet production-grade security standards
- Conduct in-depth security reviews of infrastructure using IaC practices (Terraform, Helm, GitOps)
- Implement and automate security enforcement via scripts, policies, and tooling (e.g., OPA, Kyverno, admission controllers)
- Perform architecture and design reviews with a focus on least privilege, defense-in-depth, and attack surface reduction
- Advance platform security monitoring through logging, alerting, and SIEM integrations
- Build automation (Bash, Python, Go) to scale security operations and reduce manual effort
- Apply AI/ML techniques to detect anomalous behavior, zero-day threats, and advanced attack patterns
- Leverage AI-driven tools for policy generation, risk scoring, and remediation prioritization
- Develop approaches to identify configuration drift and misconfigurations across Kubernetes and IaC environments
- Lead and evolve incident response processes; act as a primary escalation point when needed
- Conduct blameless post-mortems and ensure timely remediation of security gaps
- Own vulnerability management across platform, cloud, and application layers
- Strengthen security posture through baseline standardization and operational readiness
- Oversee secrets management, encryption strategies, and access control policies
- Champion a “Security as Code” mindset and promote shared ownership through Security Champions programs
- Balance startup speed with scalable, long-term security practices
- Partner closely with engineering teams to embed security into development workflows (DevSecOps)
- Collaborate with SRE on platform hardening, incident response, and reliability improvements
- Clearly communicate security risks and posture to technical and executive stakeholders
Requirements
- 6+ years of experience in Software Security, Product Security, or DevSecOps
- 2+ years in a technical leadership or mentorship role
- Deep, hands-on expertise in Kubernetes security and cloud-native systems
- Strong experience securing Linux, containers, and cloud platforms (AWS, GCP, or Azure)
- Proven track record managing real-world security incidents in production environments
- Strong programming/scripting skills (Go, Python, Bash, or similar)
- Solid understanding of compliance frameworks (FIPS, CIS, STIG) and their practical application
- Hands-on experience with image hardening and secure system configurations
- Experience driving penetration testing programs and managing external vendors
Benefits
- Comprehensive medical, dental, and vision coverage. 100% coverage for employees, 90% for dependents
- Access to a retirement savings plan
- Flexible time off, including 12 paid holidays
- Catered lunches on in-office days, mobile/internet reimbursement
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Senior Consultant helping the Ministry of Defence with large - scale ICT projects and innovations in technology and security. Lead developments in networks and applications in cooperation with Defence Architects.
Lead Information Security initiatives at Starling, the UK's leading digital bank. Manage policy frameworks, team performance, and ensure compliance with security standards.
Technical Operator handling ticket resolution and IT troubleshooting in a structured team environment for Managed Security Services. Interfacing with varied technical tools to support international clients.
Support Health, Safety, and Security processes at East West Rail. Coordinate training, manage budgets, and ensure compliance with regulatory standards.
AI Security Engineer focusing on adversarial machine learning and enterprise security architecture. Leading red team engagements and translating technical risk into governance frameworks.
AI Security Architect leading adversarial testing for enterprise AI products, integrating security findings into governance frameworks. Collaborating with engineering and compliance functions in a hybrid work environment.
Leading GRC & IT Security Consulting at Orange Cyberdefense in Zürich. Drive business growth and manage client relationships while leading a technical consulting team.
Senior Endpoint Security Engineer at Metric5 managing CrowdStrike Falcon deployment for Department of Treasury. Overseeing sensors rollout and resolving high - tier architectural issues in diverse IT environments.
Cybersecurity Sales Specialist responsible for driving sales across Fortune 250 accounts. Engage with C - suite leaders to enhance cybersecurity solutions and strategies across global enterprises.