Kubernetes Security Governance

For our international team, we are looking for a Governance/Compliance Kubernetes Specialist with a strong security background. In this role, you will support security assessment activities and provide security assurance and governance for Deutsche Telekom projects related to Container-as-a-Service platforms (including Kubernetes and Azure-based services). You will work closely with international project teams, architects, and stakeholders to ensure solutions meet Deutsche Telekom security requirements. This is not a delivery or operational role. It is a security assurance and governance position.

We are looking for someone with strong knowledge of Kubernetes and its security concepts (deployments, operational concepts, image security, RBAC, Infrastructure-as-Code templates, etc.), along with a general understanding of security governance and policies aligned with best practices. To support product development by ensuring compliance with security requirements, experience with project assessment and governance is needed. Definition and review of security best practices on Kubernetes will be performed regularly. We are looking for someone who will not hesitate to engage in researching how to connect new technology for our benefit. Getting things done and solving problems with the team are essential to the team culture.

Tasks: 

• Perform security reviews of projects as part of the internal security assessment process.
• Provide advisory support to project teams from a security and compliance perspective.
• Assess Kubernetes architectures and designs against internal security requirements.
• Define, review, and help enforce internal security requirements for Kubernetes-based solutions.
• Identify, assess, and document security risks, support risk acceptance and exception processes.
• Govern security testing activities, evaluate results, track findings, and follow up on remediation.
• Contribute to the development of security standards and best practices within the Deutsche Telekom environment.

Hard Skills

• Fluent in English, spoken and written
• Ability to work independently and take ownership of security topics
• Strong knowledge of Kubernetes and related technologies, such as:
  • Kubernetes architecture and deployments
  • Operational concepts (how production Kubernetes is typically operated and secured)
  • Image security
  • Network policies and segmentation concepts
  • Role-Based Access Control
  • Infrastructure-as-Code templates
• Experience with security governance, policies, or compliance frameworks
• Experience with risk assessment, vulnerability management, or security analysis

 

Soft Skills

• Great communication skills and ability to work in multicultural environments
• Drive and commitment to assignments
• Problem-solving attitude and willingness to ask for help when needed.

• 5+ years of proven history with risk and vulnerability management
• German language

What our team offers to you: 

• Supportive colleagues locally and internationally 
• Various insights into the different areas of cyber security and supporting fields 
• Knowledge expansion through trainings, professional certifications

* Please be informed that our remote working possibility is only available within Hungary due to European taxation regulation.

* Please be informed that our remote working possibility is only available within Hungary due to European taxation regulation.