Kubernetes Platform Engineer (Container Security & Image Registry)

Title: Kubernetes Engineer - AKS, GKE, DevSecOps, Image RegistryEssential Skills: Kubernetes Engineer (AKS GKE)Skills: Digital : KubernetesExperience Required: 8-10EducationBachelor?s degree in Computer Science, Information TechnologyMust Have Experience with container signing tools and container image security compliance frameworks. Hands-on experience with automated patch management and incident response in containerized environments. Knowledge of industry standards for container security. Proven experience managing private container image registries. Expertise in containerization technologies like Docker, Kubernetes, and OpenShift. Strong understanding of container image security, vulnerability scanning tools and remediation processes. Familiarity with cloud service platforms (AWS, Azure, Google Cloud Platform) and container orchestration (EKS, AKS, GKE) in a cloud environment. Experience with CI/CD pipelines and integrating image registries with DevOps tools. Solid understanding of access controls, RBAC, and container security best practices.ResponsibilitiesContainer Image Management: Drive enhancements to the storage, distribution, and access control of container images in the private container image registry. Work closely with vendor acting as the supplier of clean images and remediator of vulnerabilities that are introduced to those clean images. Write governance requirements and implement lifecycle management policies, including image cleanup, retention policies, and versioning. Communicate with development teams to ensure proper tagging, labeling, and documentation of container images.Vulnerability Management: Continuously monitor container images for vulnerabilities using automated scanning tools. Collaborate with the vendor to remediate container vulnerabilities by patching, updating, or replacing insecure images within their SLA timeframes. Maintain an incident response plan related to container image security breaches or vulnerabilities.Registry Optimization & Maintenance: Perform routine audits, maintenance, and upgrades of the container image registry to ensure it meets current standards.Policy and Compliance: Work with Humana Automation Team (E3) to establish governance policies for image publishing, access control, and permissions to ensure secure image distribution. Work with E3 and Security teams to enforce Dev image pulls from the Private Container Registry as the only image registry to reduce vulnerabilities across the enterprise.Collaboration & Support: Work closely with DevOps, development, and security teams to streamline container deployment pipelines and enhance CI/CD processes. Provide guidance and best practices to development teams for secure image creation and management.