Kubernetes Engineer

Container Image Management:

? Drive enhancements to the storage, distribution, and access control of container images in the private container image registry. ? Work closely with vendor acting as the supplier of clean images and remediator of vulnerabilities that are introduced to those clean images. ? Write governance requirements and implement lifecycle management policies, including image cleanup, retention policies, and versioning. ? Communicate with development teams to ensure proper tagging, labeling, and documentation of container images.

Vulnerability Management:

? Continuously monitor container images for vulnerabilities using automated scanning tools. ? Collaborate with the vendor to remediate container vulnerabilities by patching, updating, or replacing insecure images within their SLA timeframes. ? Maintain an incident response plan related to container image security breaches or vulnerabilities.

Registry Optimization & Maintenance:

? Perform routine audits, maintenance, and upgrades of the container image registry to ensure it meets current standards.

Policy and Compliance:

? Work with Humana Automation Team (E3) to establish governance policies for image publishing, access control, and permissions to ensure secure image distribution. ? Work with E3 and Security teams to enforce Dev image pulls from the Private Container Registry as the only image registry to reduce vulnerabilities across the enterprise.

Collaboration & Support:

? Work closely with DevOps, development, and security teams to streamline container deployment pipelines and enhance CI/CD processes. ? Provide guidance and best practices to development teams for secure image creation and management.

Essential Skills: Kubernetes Engineer (AKS GKE) Skills: Digital : Kubernetes Experience Required: 8-10

Education

Bachelor?s degree in Computer Science, Information Technology

Must Have

? Experience with container signing tools and container image security compliance frameworks. ? Hands-on experience with automated patch management and incident response in containerized environments. ? Knowledge of industry standards for container security. ? Proven experience managing private container image registries. ? Expertise in containerization technologies like Docker, Kubernetes, and OpenShift. ? Strong understanding of container image security, vulnerability scanning tools and remediation processes. ? Familiarity with cloud service platforms (AWS, Azure, Google Cloud Platform) and container orchestration (EKS, AKS, GKE) in a cloud environment. ? Experience with CI/CD pipelines and integrating image registries with DevOps tools. ? Solid understanding of access controls, RBAC, and container security best practices.