Cloud Security Engineer Kubernetes (US Remote) Engineer
Splunk
 Raleigh, NC

Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey!

Role

As a member of the Cloud Security team, you will collaborate with other security and operations teams to execute on strategic plans and develop tactical execution methodologies that enable the deployment of secure products to Splunk Cloud.

The ideal candidate is passionate about security and has a deep knowledge of containers and Kubernetes. Real-world production Kubernetes experience is a must-have for this job. We are looking for something who has broad experience across a range of technical specialties and may have had past jobs such as Information Security (Hardening, Detection/Response, Blue Team, etc) and systems (SRE, System Administration, Network Engineer, etc).

Cloud Security Engineers work with our partner teams to identify and develop security techniques and tactics to support a wide range of technologies and services in Splunk Cloud. This role involves not only developing these solutions but also working with our internal customers and partners to improve their projects by providing mentorship on how to resolve sophisticated technical issues and challenges.

Responsibilities

This role is responsible for hardening and securing Splunk Cloud's global Kubernetes environments. The role is also responsible for planning, design, testing, deployment and implementation of security tooling to support production Kubernetes infrastructure in support of Splunk Cloud’s business needs. This role will provide security engineering support in the following areas:

  • Design and build the security components of Kubernetes in multiple environments (on-prem, AWS EKS, GCP GKE).
  • Build, deploy, and maintain security automation for cloud environments.
  • Work closely with Cloud infrastructure and product teams who are moving to Kubernetes, and ensure that they have secure-by-default systems.
  • Handle network security, certificate management, pod security policies, role based access management, secure service mesh, OPA and other efforts.
  • Triage and drive remediation of security vulnerabilities in Splunk's Kubernetes environments by working across teams.
  • Coordinate with product engineers to support their security needs.
  • Act as a security advocate across the organization

Requirements

  • 5 or more years of systems experience, including SRE, systems administration, network engineering, or cloud automation.
  • 3 years of security experience with protecting cloud, infrastructure, network, containers/workloads, or blue/red/purple team.
  • Demonstrated skills in modern programming and scripting languages (Python, Go, JavaScript) and experience with Infrastructure-as-Code frameworks (Terraform, CloudFormation)
  • Experience working with DevOps, CICD, GitOps, Agile methodologies. Experience with CI/CD pipelines and automation and how to apply it with services such as Gitlab CI, Jenkins, CodePipeline, or Circle CI.
  • Demonstrated ability to accurately assess problems and requests from multiple perspectives, analyze approach feasibility, and decide on the efficient course of action.
  • A proven understanding of Kubernetes multi-tenant deployments at scale. This includes security, hardening, policies, and deployment in infrastructures such as Amazon EKS or Google Cloud Platform GKE.
  • Strong ability to communicate data, facts, and analysis of technical subject matter.
  • Must be an US Citizen.
  • Open to US remote but must work on US soil.

Nice to Haves:

  • Experience in both AWS and GCP
  • Experience with multiple modern programming/scripting languages
  • Understand CIS, GDPR, PCI and FedRAMP regulations and the protections afforded customers and employees

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.

For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.

Support