IT Senior Web Security Expert

(Key Accountabilities)

We are seeking a skilled and experienced Web and Container Security Engineer to join our cybersecurity team. The ideal candidate will be responsible for securing web applications, APIs, and containerized environments (Docker, Kubernetes, etc.), ensuring robust protection against evolving threats. This role involves hands-on security engineering, vulnerability assessments, and collaboration with development and DevOps teams to embed security into the CI/CD pipeline.

1.

Experience

Key Responsibilities:

·        Implement and maintain security controls for web applications and containerized environments.

·        Perform regular vulnerability assessments of web applications and containers.

·        Monitor and respond to security incidents related to web and container infrastructure.

·        Collaborate with DevOps and development teams to integrate security into CI/CD pipelines.

·        Develop and enforce secure coding practices and container hardening guidelines.

·        Evaluate and deploy container security tools (e.g., Aqua, Twistlock, Sysdig, etc.).

·        Conduct threat modeling and risk assessments for new and existing applications.

·        Stay updated with the latest security trends, vulnerabilities, and threat intelligence.

·        Document security policies, procedures, and remediation plans.

·        Required Skills & Qualifications:

·        Bachelor’s degree in Computer Science, Information Security, or related field.

·        5+ years of experience in web application and container security.

·        Strong understanding of OWASP Top 10 and secure coding practices.

·        Experience with container technologies like Docker and orchestration platforms like Kubernetes.

·        Familiarity with container security tools

·        Proficiency in scripting languages (Python, Bash, etc.) for automation and tooling.

·        Experience with CI/CD tools (Jenkins, GitLab CI, etc.) and integrating security checks.

·        Knowledge of cloud platforms Azure, and their container services.

·        Excellent analytical, problem-solving, and communication skills.

Preferred

Certified Kubernetes Security Specialist (CKS)

GIAC Web Application Penetration Tester (GWAPT)

Offensive Security Certified Professional (OSCP)

Soft Skills

• Excellent problem-solving and analytical skills.
• Strong communication and collaboration abilities.
• Ability to mentor junior developers and work as part of a team.
• Ability to work in a fast-paced environment with changing requirements.
• Detail-oriented with a focus on delivering high-quality solutions.