Cybersecurity Engineer – Kubernetes and Container Security

This employer will not sponsor applicants for the following work visas: F-1 student, H-1B worker, O-1 worker, TN worker, E-3 worker. Applicants must be currently authorized to work in the United States on a full-time basis.

###### HYBRID ROLE 3 days in office ###############

Job Description Summary

The Cybersecurity Engineer Expert – Kubernetes and Container Security provides design and engineering expertise for the Cybersecurity organization to application support teams delivering external and internal services. A successful candidate can bring their expertise in Kubernetes, containers, and DevOps practices to our Cybersecurity team. If you're passionate about securing cloud-native applications and infrastructure, this role is for you!  The Cybersecurity Engineer is responsible for Kubernetes security, and generative AI runtime security.

Even if you don't have direct cybersecurity experience, we're interested in talking to you if you have a strong background in Kubernetes, container orchestration, and DevOps principles. We'll provide you with the training and support to apply your skills to securing our applications and APIs against various threats.  In other words, this is a great opportunity to transition into Cybersecurity!!

The position is a member of a collaborative agile team that is motivated and self-organizing.  Team members are focused on providing similar cybersecurity capabilities that are high-quality, easily consumable, and optimized to provide security mitigation value.  The team is empowered to make decisions on how the capabilities are delivered, operated, and improved.

Key Responsibilities

• Provide excellent customer service for internal and external customers in support of security initiatives, incident response, and operational support.
• Develop, maintain, and automate application protection technologies throughout Huntington's enterprise environment.
• Provide subject matter expertise to the Cybersecurity Operations Center that is monitoring and responding to alerts and incidents.  
• Demonstrate flexibility and resiliency responding to dynamic or ambiguous situations.
• Stay current on industry trends, evolving application protections, cloud provider capabilities, and the ever-increasing threat landscape. 
• Perform implementation of CNAPP tools in multi-account AWS, Azure, and OpenShift environments.
• Develop Infrastructure as Code (IaC) using Terraform and integrate security scanning into CI/CD pipelines
• Develop custom control checks within CNAPP Platforms using JSON, REGO, or Terraform
• Collaborate with DevOps and application development teams to build secure enterprise applications
• Troubleshoot and maintain the security of our Kubernetes clusters and container environments

Basic Qualifications:

• 5 Years of any of the below basic qualifications experience combined::
• 3+ years of experience working with Kubernetes and container orchestration platforms.
• 3+ years of experience managing the security of pods/containers and images.
• 3+ years of experience with container orchestration networking.
• 3+ years of experience integrating and managing security platforms in corporate environments or developing secure enterprise business applications.
• 3+ years of experience with at least one high level programming language. (e.g., Python, Go, Java, JavaScript, etc.)
• 3+ years of experience integrating security tools into CI/CD pipelines and collaborating with DevOps and application development teams.
• Bachelor’s degree

Preferred Qualifications:

• Hands-on experience building security into various products, infrastructure, or platforms or experience with DevSecOps.
• Extensive experience operating a Cloud Workload Protection platform such as Aqua Security (preferred), Palo Alto Prisma Cloud, Lacework, Dome9, Snyk, Wiz.io, or Orca.
• Knowledge in understanding of various domains such as security architecture, system and network security, authentication and authorization protocols, cryptography, and application security.
• Cloud Security certifications are preferred.
• Experience securing public, b2c, b2b, and internal APIs.
• Experience automating the provisioning and verification of on-premises and cloud security services.
• Advanced level knowledge of operating systems (e.g., Windows, Linux, & Unix).
• Experience working in an agile work team.
• Thrives in fast pace and dynamic environments.
• Energized by mitigating sophisticated threats targeting enterprises and customers.
• 3+ years of experience deploying code using Terraform.
• 3+ years of experience working with security by design principles, architecture level concepts, security frameworks (NIST and PCI), OWASP, etc.
• 5+ years of experience in a role that requires written and verbal communication with customers.
• Generative AI runtime security experience

If you’re excited about the prospect of applying your Kubernetes and DevOps skills to the cybersecurity domain, we would love to hear from you! Join our team and be part of our mission to secure our applications and infrastructure against sophisticated threats.

#LI-Hybrid

#LI-SG1

Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)

Workplace Type:

Our Approach to Office Workplace Type

Certain positions outside our branch network may be eligible for a flexible work arrangement. We’re combining the best of both worlds:  in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.

Huntington is an equal opportunity and affirmative action employer and is committed to providing equal employment opportunities for all regardless of race, color, religion, sex, national origin, age, disability, sexual orientation, veteran status, gender identity and expression, genetic information, or any other basis protected by local, state, or federal law.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position