CybersecurityJobs.io
← Back to all jobs

Job Description

Senior Security Consultant specializing in Kubernetes penetration testing at NetSPI, onsite in Minneapolis, MN, responsible for conducting Kubernetes assessments, developing techniques and tools, and guiding remediation strategies for clients.

Responsibilities

  • Execute Kubernetes penetration tests against cloud-hosted and self-managed environments.
  • Create attack narratives and findings-based penetration test reports for clients.
  • Research and develop innovative techniques, tools, and methodologies for penetration testing services, and contribute to NetSPI products and processes.
  • Collaborate with clients to design remediation strategies that improve their security posture.
  • Serve as a technical resource for internal team members on Kubernetes questions and best practices.
  • Assist in QA review of Kubernetes engagements.
  • Contribute to the information security community through tools, presentations, white papers, and blogs.

Requirements

  • Bachelor's degree or higher with a concentration in computer science, engineering, math, IT, or equivalent experience.
  • 5 years combined experience performing offensive/attack-oriented penetration tests against Kubernetes and at least one of the following: cloud environments, web applications or thick client applications.
  • Deep hands-on experience with Kubernetes clusters.
  • Recognized penetration testing qualifications such as GXPN, OSEP, OSCP, OSWE or similar certifications.
  • Kubernetes related certification such as CKA, CKS or similar.
  • Strong communication, presentation, and writing skills.
  • Experience performing security focused configuration reviews.
  • Exploiting workload misconfigurations in Kubernetes clusters such as RBAC-based privilege escalation, exploiting sensitive kernel capabilities, bypassing admission controls and executing well-known container breakout techniques.
  • Understanding of security best practices for containers and the feasibility of applying those practices.
  • Network pivoting from a Kubernetes cluster into cloud or other cluster-adjacent/exposed services.
  • Utilizing OWASP Top 10 vulnerabilities to explore attack surface of Kubernetes workloads.
  • Technologies: Kubernetes, Python, Go, Bash.

Similar Jobs