Security Engineer

About the Role

We’re looking for a Container Security Engineer who is passionate about securing cloud-native applications and containers across environments. The ideal candidate will be responsible for identifying and mitigating vulnerabilities in container images, collaborating closely with application and platform teams, and automating security processes across CI / CD pipelines.

You’ll play a key role in improving the overall container security posture — from image scanning to remediation and compliance enforcement — while ensuring minimal disruption to developer workflows.

Key Responsibilities

• Perform container image scanning using tools such as Snyk, Wiz to identify vulnerabilities.
• Collaborate with application and DevOps teams to analyze scan results, prioritize findings, and guide remediation.
• Integrate container image scanning into CI / CD pipelines (e.g., GitHub Actions, GitLab CI, Jenkins).
• Develop and maintain automation scripts in Python or Shell for reporting, alerting, and compliance tracking.
• Enforce container security best practices such as :
• Least privilege and minimal base images
• Secure image registries (private registries, signed images)
• Regular patching and dependency management
• Work with Cloud Security and DevOps teams to ensure container runtime protection, policy compliance, and vulnerability management across AWS, GCP, or Azure .
• Support the development and enforcement of OPA Gatekeeper , Kyverno , or other admission controller policies in Kubernetes clusters.
• Contribute to improving DevSecOps pipelines and participate in threat modeling for containerized workloads.

Required Skills & Qualifications

Preferred Qualifications

Soft Skills