Cybersecurity Consultant - DevSecOps / Kubernetes

We are looking for a Confirmed Cybersecurity Consultant to support our team in DevSecOps & Kubernetes security domains. The consultant will work on advanced threat detection engineering and threat hunting, with a strong focus on Linux, containerized, Kubernetes and cloud-native environments.

You will collaborate with other teams to strengthen early detection of cyber threats using state-of-the-art SIEM and runtime detection technologies., * Design, develop, and maintain threat-informed detection rules based on cyber threat intelligence, adversary techniques, and incident feedback

• Engineer and deploy detection use cases for Linux workloads, including physical, virtual, and containerised systems
• Integrate and validate security telemetry (container runtime events, Kubernetes audit logs, cloud control-plane logs) into SIEM platforms
• Perform continuous tuning and optimization of detections to reduce false positives and improve coverage and performance
• Conduct proactive threat hunting and retro-hunting activities and convert findings into production-grade detections
• Contribute to detection coverage mapping, gap analysis, and risk-based prioritization
• Produce and maintain technical documentation (specifications, validation evidence, runbooks, reporting)
• Master's degree in IT or Cybersecurity, + Net expenses

• Company car or mobility budget (whatever works best for you)
• Health insurance
• Meal vouchers
• Pension plan
• Eco vouchers from €250/year.
• A flex plan where you can buy extra days off, update your insurance or buy home office supplies.
• 32 vacation days + Bank holidays.

Mandatory

• European Union nationality (EU-27)
• Fluent English (working language)
• Minimum 6 years of experience in Cybersecurity
• At least one recognized cybersecurity certification (e.g. CISSP, CISM, GCED, GCIH, Security+, CEH, cloud security certs, etc.)
• Strong expertise in Kubernetes security and attacker techniques
• Proven experience in threat detection engineering and/or threat hunting
• Experience with SIEM platforms, preferably Splunk
• Ability to work in a multicultural, international environment
• Eligible for EU security clearance

Strong Assets

• Cloud security (AWS and/or Azure)
• Detection content lifecycle, Git-based workflows, CI/CD or DetectionOps

Soft skills

• Strong analytical and problem-solving skills
• Ability to work autonomously in operational contexts
• Clear technical communication and documentation skills
• Team-oriented mindset in international environments
• Risk-aware and security-focused approach

Capgemini ist einer der weltweit führenden Anbieter von Management- und IT-Beratung, Technologie-Services und Digitaler Transformation. Als ein Wegbereiter für Innovation unterstützt das Unternehmen seine Kunden bei deren komplexen Herausforderungen rund um Cloud, Digital und Plattformen.