Security Analyst/Engineer

Docker Container Operating Systems Critical Thinking Docker (Software) Windows PowerShell Business Valuation Nodes (Networking) Offensive Security Container Security Penetration Testing Application Security Cross-Site Scripting Technology Ecosystems Cloud-Native Computing Full Stack Development Artificial Intelligence Infrastructure Security Application Development Business Transformation Business Risk Management Vulnerability Management Security Recommendations Risk Exposure Management Bash (Scripting Language) Cyber Threat Intelligence Attack Surface Management Product Family Engineering Perl (Programming Language) Python (Programming Language) Google Kubernetes Engine (GKE) Enterprise Application Software Role-Based Access Control (RBAC) Troubleshooting (Problem Solving) Application Programming Interface (API) Open Web Application Security Project (OWASP) Security Information And Event Management (SIEM) Certified Information Systems Security Professional, This position highly technical, hands-on role focused on containerized and cloud-native environments is responsible for continuously identifying, validating, and assessing security exposures across enterprise systems, with particular emphasis on Openshift, Kubernetes, Docker, container runtimes, orchestration platforms, and the supporting infrastructure that enables modern application delivery.

This role will support day-to-day operations by validating exposure paths, confirming real world exploit potential, and helping the organization better understand how vulnerabilities could impact containerized workloads, images, clusters, nodes, registries, pipelines, and dependent services. This role will translate hands-on platform knowledge into practical recommendations that reduce exposure and improve the security posture of containerized environments., * Leverage hands-on knowledge of containerized environments to evaluate vulnerabilities, determine potential impact to workloads and supporting platforms, and escalate validated risks to appropriate remediation owners.

• Support day-to-day operations of the exposure management program, including data review, report processing, and trend analysis. Track remediation of identified risks and mitigation strategies and escalate findings to key stakeholders.
• Analyze potential security risks, determine applicability to containerized and traditional environments, and conduct attack path mapping to ensure the highest risk exposures are being addressed first.
• Assess Kubernetes and Docker-related exposures, including vulnerable images, excessive privileges, insecure runtime settings, weak RBAC, exposed APIs, misconfigured network policies, secrets exposure, and insecure deployment patterns.
• Partner with platform, infrastructure, application, and DevOps teams to recommend practical mitigations that reduce exposure without unnecessarily disrupting application delivery or operational reliability.
• Provide actionable insights and offensive-driven recommendations to harden systems, container images, workloads, clusters, pipelines, and supporting infrastructure to reduce attack surface.
• Maintain situational awareness of the threat landscape, including zero-days, CVEs, and novel exploitation methods.
• Partner with stakeholders to prioritize remediation based on risk exposure and potential adversary gap.
• Collaborate with peers from across the organization and maintain excellent working relationships with key partners across Technology Organization functions and business partners, Docker Container Operating Systems Critical Thinking Docker (Software) Windows PowerShell Business Valuation Nodes (Networking) Offensive Security Container Security Penetration Testing Application Security Cross-Site Scripting Technology Ecosystems Cloud-Native Computing Full Stack Development Artificial Intelligence Infrastructure Security Application Development Business Transformation Business Risk Management Vulnerability Management Security Recommendations Risk Exposure Management Bash (Scripting Language) Cyber Threat Intelligence Attack Surface Management Product Family Engineering Perl (Programming Language) Python (Programming Language) Google Kubernetes Engine (GKE) Enterprise Application Software Role-Based Access Control (RBAC) Troubleshooting (Problem Solving) Application Programming Interface (API) Open Web Application Security Project (OWASP) Security Information And Event Management (SIEM) Certified Information Systems Security Professional +0

Linux CI/CD DevOps Curiosity Scripting Hardening OpenShift DevSecOps Pipelines Operations Management Kubernetes Mitigation Adaptability Log Analysis Communication Path Analysis Cyber Security Cloud Services Trend Analysis Cloud Security Code Injection Detail Oriented Buffer Overflow Helm (Software) Computer Science Embedded Systems, vulnerability, infrastructure security, container security, kubernetes, docker, openshift, ci/cd, CTEM, Threat Intelligence Alignment, SIEM, Detection validation, CSPM, Dependency Risk, cissp, cks

Top Skills' Details

• 10 + Years Ability to identify security vulnerabilities in the design, architecture, or implementation of an IT or OT system. Ability to perform IT or OT network scans and identify vulnerabilities in web applications, networks, systems, embedded devices, and firmware
• Container & Kubernetes Security: Hands-on expertise securing Kubernetes, Docker, OpenShift, and container ecosystems (images, clusters, RBAC, network policies, runtime controls).
• Vulnerability & Exposure Management: Ability to identify, validate, and prioritize real-world security risks using attack path analysis and an adversarial (attacker) mindset.
• Cloud-Native & DevSecOps Architecture: Strong understanding of CI/CD pipelines, cloud platforms, container infrastructure, and how applications interact with underlying systems., * Bachelor's degree in Computer Science, Cybersecurity, or equivalent experience
• 2+ years in container platform engineering, DevSecOps, application development, offensive security, penetration testing, or adversarial threat simulation
• Demonstrated expertise standing up, supporting, securing, or troubleshooting containerized environments such as Kubernetes, Docker, OpenShift, AKS, EKS, GKE, or similar platforms
• Ability to assess vulnerabilities in container images, base images, package dependencies, Kubernetes manifests, Helm charts, admission controls, container runtimes, and cluster configurations
• Working knowledge of container security controls and hardening practices, including image scanning, least privilege, non-root containers, secrets handling, network policies, RBAC, pod security standards, and runtime monitoring
• Strong understanding of how applications interact with underlying infrastructure, including operating systems, containers, container registries, orchestration platforms, service meshes, cloud services, and CI/CD pipelines
• Proficiency in scripting languages (Python, PowerShell, Bash; PERL a plus).
• Knowledge of vulnerability management, attack surface management, cloud security posture management, container security posture management, and exposure management concepts
• Familiarity with OWASP testing methodologies and common application/system vulnerabilities.
• Understanding of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, code injection, race conditions, covert channel, replay, return-oriented attacks)
• Understanding and familiarity with different operating systems (e.g., Windows and LINUX/UNIX systems)
• Experience with SIEM platforms for detection validation and log analysis.
• Excellent communication skills for translating technical findings into business risk narratives.
• Ability to think like an attacker-creative, persistent, and detail-oriented in identifying weaknesses.
• Ability to thrive in a fast-paced environment, demonstrating adaptability and flexibility in response to changing priorities and emerging threats.
• Experience driving discussions and consensus across a broad group of stakeholders and cross functional teams regarding security recommendations and mitigation strategies.
• Demonstrates strong critical thinking and curiosity, essential for effectively analyzing and addressing security threats and vulnerabilities.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave) Workplace Type

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company., We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.