Kubernetes Security Engineer

Isovalent, now part of Cisco, is the company founded by the creators of Cilium and eBPF. Cisco Isovalent builds open-source software and enterprise solutions solving networking, security, and observability needs for modern cloud-native infrastructure. The flagship technology, Cilium, is the choice of numerous, industry-leading, global organizations.
We believe in fostering an inclusive and diverse workplace where every team member feels valued, respected, and empowered. We believe that every employee contributes to our success, and we are committed to fostering an environment where everyone can thrive. We encourage candidates from all backgrounds to apply and join us in our mission to deliver exceptional products and services.
About this role:
We are looking for a Security Engineer focused on Kubernetes, but with a broad range of security skills. You will help us test and harden our products, as well as secure our supply chain and build systems. This role will involve working across Cilium, Tetragon, and Hubble, and includes contributing to the open-source elements of these projects in addition to Cisco Isovalent's proprietary features.
What you'll do:

• Reviewing design documents and CFPs for features from a security perspective.
• Triaging vulnerability reports and guiding applicable reports through to resolution.
• Proactively testing existing product features for vulnerabilities.
• Building tooling to help us automate regular tasks, integrate security checks in our CI system, and measure the effectiveness of our processes.
• Reviewing the security of our CI pipeline and suggesting improvements.
• Drafting and releasing advisory and other security-related documentation to Isovalent's customers and the wider open-source community.

Minimum Qualifications:

• A computer science degree or equivalent experience
• 3+ years of experience in the security industry, focusing on either application or cloud security
• Experience in container security and Kubernetes security and background in securing Kubernetes-based software or production Kubernetes deployments

Preferred Qualifications:

• A good understanding of supply chain security concerns and their solutions.
• Experience in building tooling to support security processes would be a plus.
• Knowledge about Linux systems design, Linux security and/or networking, or the Linux kernel knowledge is a plus.
• Certified Kubernetes Security Specialist (CKS)

Why Cisco Secure
We're global, we're adaptable, we're diverse, and our security portfolio is as extensive as it is groundbreaking. Have you heard of Threat, Detection & Response, Zero Trust by Duo, Common Services Engineering, or Cloud & Network Security? Those are only a few of our product teams! The only thing we're missing is YOU.
Join an enterprise security leader with a start-up culture, committed to driving innovation and giving you the opportunity to make an impact. We #InnovateToWin and we know we're better together, that's why we're dedicated to inclusivity, collaboration, and diversity in everything we do.
We're proud to be the Best Small and Mid-Size Enterprises Security Solution Cisco Secure continues to grow and evolve year after year with 100% of Fortune 100 Companies using our products, and we're excited to see the new heights we'll reach with your passion for security, your customer focus, and your desire to change things up!
There are so many amazing reasons to join Cisco. Learn more here!
Message to applicants applying to work in the U.S. and/or Canada:When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program.Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:.75% of incentive target for each 1% of revenue attainment up to 50% of quota;1.5% of incentive target for each 1% of attainment between 50% and 75%;1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.