M
Mobile Premier League (MPL)•3h ago
Foundit
Security Engineer
Bengaluru / Bangalore
Full Time
Mid Level
350000-1500000
N/A
N/A
N/A
Responsibilities
Qualifications & Requirements
Experience Level: Mid Level
Full Job Description
Security Engineer - Cloud Native Security at Mobile Premier League (MPL) in Bengaluru
Mobile Premier League (MPL) is seeking a skilled Security Engineer to join our dynamic team in Bengaluru. This role is crucial for safeguarding our cloud-native applications and infrastructure. You will focus heavily on Kubernetes security, container security, implementing DevSecOps practices, and driving automation to protect our valuable assets and data from an ever-evolving threat landscape.
Key Responsibilities:
Kubernetes Security
- Assess and enhance the security posture of our Kubernetes clusters.
- Implement and enforce best practices for securing Kubernetes deployments and configurations.
- Proactively monitor Kubernetes resources for potential security vulnerabilities and misconfigurations.
Container Security
- Evaluate and deploy robust container security solutions to fortify containerized applications.
- Conduct regular vulnerability assessments and penetration testing on container images.
- Ensure comprehensive container image scanning and enforce runtime security measures.
DevSecOps Integration
- Collaborate closely with DevOps and development teams to seamlessly integrate security into the CI/CD pipeline.
- Automate security testing and compliance checks throughout development and deployment workflows.
- Foster a strong culture of security awareness and ownership across all development teams.
Automation
- Develop, maintain, and enhance automated security tooling and scripts to optimize security operations.
- Create and manage security policies as code (Infrastructure as Code) for cloud resources.
- Continuously improve security incident response capabilities through automation.
Security Compliance
- Ensure adherence to relevant security standards and regulations (e.g., CIS benchmarks, GDPR, HIPAA).
- Perform regular audits and assessments to identify and address any compliance gaps.
Incident Response
- Work collaboratively with incident response teams to investigate and effectively respond to security incidents.
- Contribute to post-incident analysis and the implementation of remediation strategies.
Documentation and Training
- Develop and maintain comprehensive documentation for security procedures, guidelines, and best practices.
- Provide essential security training and guidance to various teams as required.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).
- Demonstrated experience as a Security Engineer with a strong focus on Kubernetes, container security, DevSecOps, and automation.
- In-depth knowledge of containerization technologies such as Docker and Kubernetes.
- Familiarity with cloud security principles and best practices on platforms like AWS, Azure, or GCP.
- Proficiency in scripting and automation using languages such as Python, Bash, or Go.
- Experience with various security scanning tools (e.g., Clair, Trivy, SonarQube, Twistlock).
- Solid understanding of DevOps practices and associated tools (e.g., Jenkins, GitLab CI/CD).
- Exceptional problem-solving abilities and strong communication skills.
- Relevant certifications (e.g., Certified Kubernetes Security Specialist, Certified DevSecOps Engineer) are considered a significant advantage.
Company
M
Mobile Premier League (MPL)
Bengaluru / Bangalore
Posted on Foundit