Cybersecurity Analyst - Container Security
Listed on 2026-07-02
-
IT/Tech
Cybersecurity, Cloud Computing: Infrastructure & Operations
Container Security & Exposure Management Analyst
Client is seeking a passionate Container Security & Exposure Management Analyst to support its Cybersecurity organization in a highly technical, hands-on role focused on containerized and cloud-native environments. This position is responsible for continuously identifying, validating, and assessing security exposures across enterprise systems, with particular emphasis on Openshift, Kubernetes, Docker, container runtimes, orchestration platforms, and the supporting infrastructure that enables modern application delivery.
The analyst will support day-to-day CTEM operations by validating exposure paths, confirming real world exploit potential, and helping the organization better understand how vulnerabilities could impact containerized workloads, images, clusters, nodes, registries, pipelines, and dependent services. This role will translate hands-on platform knowledge into practical recommendations that reduce exposure and improve the security posture of containerized environments.
Qualifications include a Bachelor's degree in Computer Science, Cybersecurity, or equivalent experience. The candidate should have 2+ years in container platform engineering, Dev Sec Ops , application development, offensive security, penetration testing, or adversarial threat simulation. Demonstrated expertise standing up, supporting, securing, or troubleshooting containerized environments such as Kubernetes, Docker, Open Shift, AKS, EKS, GKE, or similar platforms is required. Ability to assess vulnerabilities in container images, base images, package dependencies, Kubernetes manifests, Helm charts, admission controls, container runtimes, and cluster configurations is essential.
Working knowledge of container security controls and hardening practices, including image scanning, least privilege, non-root containers, secrets handling, network policies, RBAC, pod security standards, and runtime monitoring is necessary.
Strong understanding of how applications interact with underlying infrastructure, including operating systems, containers, container registries, orchestration platforms, service meshes, cloud services, and CI/CD pipelines is required. Proficiency in scripting languages (Python, Power Shell, Bash; PERL a plus) is needed. Knowledge of vulnerability management, attack surface management, cloud security posture management, container security posture management, and exposure management concepts is essential. Familiarity with OWASP testing methodologies and common application/system vulnerabilities is required.
Understanding of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, code injection, race conditions, covert channel, replay, return-oriented attacks) is necessary. Experience with SIEM platforms for detection validation and log analysis is required. Excellent communication skills for translating technical findings into business risk narratives are needed. Ability to think like an attacker—creative, persistent, and detail-oriented in identifying weaknesses is essential.
Ability to thrive in a fast-paced environment, demonstrating adaptability and flexibility in response to changing priorities and emerging threats is required. Experience driving discussions and consensus across a broad group of stakeholders and cross functional teams regarding security recommendations and mitigation strategies is necessary. Demonstrates strong critical thinking and curiosity, essential for effectively analyzing and addressing security threats and vulnerabilities.
Job responsibilities include leveraging hands-on knowledge of containerized environments to evaluate vulnerabilities, determine potential impact to workloads and supporting platforms, and escalate validated risks to appropriate remediation owners. Support day-to-day operations of the exposure management program, including data review, report processing, and trend analysis. Track remediation of identified risks and mitigation strategies and escalate findings to key stakeholders. Analyze potential security risks, determine applicability to containerized and traditional environments, and conduct attack path mapping to ensure the highest risk exposures are being addressed first.
Assess Kubernetes and Docker-related exposures, including vulnerable images, excessive privileges, insecure runtime settings, weak RBAC, exposed APIs, misconfigured network policies, secrets exposure, and insecure deployment patterns. Partner with platform, infrastructure, application, and Dev Ops teams to recommend practical mitigations that reduce exposure without unnecessarily disrupting application delivery or operational reliability. Provide actionable insights and offensive-driven recommendations to harden systems, container images, workloads, clusters, pipelines, and supporting infrastructure to reduce attack surface.
Maintain situational awareness of the threat landscape, including…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).