ForHire

Principal Penetration Tester (Cloud Infrastructure, Kubernetes and Containers)

Saviynt
Full-time
Bengaluru
Posted on 3 months ago

Job Description

Saviynt is seeking a highly skilled and experienced Lead/Principal Penetration Tester to join our security team. This role has a string focus exclusively on advanced penetration testing of cloud infrastructure (AWS and Azure) and containerized environments, including Kubernetes (EKS and AKS). You will collaborate closely with Architecture, Cloud Platform Engineering, Cloud Operations and Security teams to identify vulnerabilities, assess risks, and recommend effective mitigation strategies.

Responsibilities

  • Conduct in-depth penetration testing of cloud infrastructure on AWS and Azure
  • Perform security assessments and penetration testing on Kubernetes clusters
  • Identify and exploit misconfigurations or vulnerabilities in Kubernetes clusters
  • Analyse and prioritize vulnerabilities across AWS, Azure, and containerized deployments
  • Prepare comprehensive reports detailing findings and remediation steps
  • Collaborate with Cloud Ops, DevOps, and Cloud Engineering teams to remediate vulnerabilities
  • Leverage and customize industry-standard security tools
  • Participate in threat modelling exercises
  • Ensure all penetration testing activities adhere to industry standards
  • Develop and communicate targeted remediation strategies
  • Mentor and guide junior penetration testers

Requirements

  • Bachelor’s degree in computer science, Information Security, or a related field
  • 10+ years of hands-on experience in penetration testing, with at least 3 years focused on AWS and Azure cloud infrastructures
  • Proven expertise in penetration testing of cloud services, deployments, Kubernetes clusters, and containerized applications
  • Hands-on experience with cloud infrastructure architecture reviews, threat modelling, cloud configuration assessments, and container/Kubernetes security
  • Proficiency in scripting and automation using Python, Go, Shell, or Bash
  • Strong knowledge of security tools and techniques for cloud, Kubernetes, and containerized environments
  • Relevant certification such as OSCP, Kubernetes Security Specialist, AWS Certified Security – Specialty, or Microsoft Azure Security Engineer

Benefits

  • No benefits