Principal Penetration Tester (Cloud Infrastructure, Kubernetes and Containers)

6 Months ago • 10 Years + • Testing

Job Summary

Job Description

Saviynt is seeking a Lead/Principal Penetration Tester with a strong focus on cloud infrastructure (AWS and Azure) and containerized environments, including Kubernetes (EKS and AKS). The role involves conducting in-depth penetration testing, performing security assessments, identifying and exploiting vulnerabilities in cloud and containerized deployments, and analyzing/prioritizing risks. The tester will collaborate with various teams to provide expert guidance for remediation, leverage and customize security tools, develop custom scripts, and automate testing workflows. Responsibilities also include participating in threat modeling, ensuring adherence to industry standards, developing remediation strategies, and mentoring junior testers.
Must have:
  • 10+ years of penetration testing experience
  • 3+ years focused on AWS and Azure
  • Penetration testing of Kubernetes clusters (EKS and AKS)
  • Containerized applications security
  • Cloud infrastructure architecture reviews
  • Threat modelling
  • Cloud configuration assessments
  • Proficiency in scripting (Python, Go, Shell, Bash)
  • Knowledge of cloud/Kubernetes security tools
  • Relevant certification (OSCP, CKS, AWS Security Specialty, Azure Security Engineer)
Good to have:
  • Bachelor's degree in Computer Science or related field
Perks:
  • Tremendous growth and learning opportunities
  • Challenging yet rewarding work
  • Welcoming and positive work environment

Job Details

Saviynt is an identity authority platform built to power and protect the world at work. In a world of digital transformation, where organizations are faced with increasing cyber risk but cannot afford defensive measures to slow down progress, Saviynt’s Enterprise Identity Cloud gives customers unparalleled visibility, control and intelligence to better defend against threats while empowering users with right-time, right-level access to the digital technologies and tools they need to do their best work.

We are seeking a highly skilled and experienced Lead/Principal Penetration Tester to join our security team. This role has a string focus exclusively on advanced penetration testing of cloud infrastructure (AWS and Azure) and containerized environments, including Kubernetes (EKS and AKS). You will collaborate closely with Architecture, Cloud Platform Engineering, Cloud Operations and Security teams to identify vulnerabilities, assess risks, and recommend effective mitigation strategies.

WHAT YOU WILL BE DOING

    • Conduct in-depth penetration testing of cloud infrastructure, deployment models, and cloud-native services on AWS and Azure.
    • Perform security assessments and penetration testing on Kubernetes clusters (EKS and AKS), including container images and associated components.
    • Identify and exploit misconfigurations or vulnerabilities in Kubernetes clusters, workload security, and related cloud environments.
    • Analyse and prioritize vulnerabilities across AWS, Azure, and containerized deployments based on risk, impact, and business context.
    • Prepare comprehensive reports detailing findings, potential impacts, and actionable remediation steps. Communicate these reports effectively to both technical and non-technical stakeholders.
    • Collaborate with Cloud Ops, DevOps, and Cloud Engineering teams to provide expert guidance and support for remediating vulnerabilities in cloud infrastructure and containerized environments.
    • Leverage and customize industry-standard security tools (e.g., Trivy, kube-hunter, Aqua, Falco) and develop custom scripts or tools to enhance testing capabilities. Automate repetitive tasks to streamline penetration testing workflows.
    • Participate in threat modelling exercises to identify risks specific to AWS, Azure, EKS, and AKS environments.
    • Ensure all penetration testing activities adhere to industry standards and compliance frameworks, such as NIST, ISO 27001, CSA, and Kubernetes Security Best Practices.
    • Develop and communicate targeted remediation strategies for cloud and container security risks, ensuring alignment with organizational goals and business priorities.
    • Mentor and guide junior penetration testers, fostering continuous learning and professional growth in cloud and container security practices.

WHAT YOU BRING

    • Bachelor’s degree in computer science, Information Security, or a related field.
    • 10+ years of hands-on experience in penetration testing, with at least 3 years focused on AWS and Azure cloud infrastructures.
    • Proven expertise in penetration testing of cloud services, deployments, Kubernetes clusters (EKS and AKS), and containerized applications.
    • Hands-on experience with cloud infrastructure architecture reviews, threat modelling, cloud configuration assessments, and container/Kubernetes security. 
    • Proficiency in scripting and automation using Python, Go, Shell, or Bash for custom testing.
    • Strong knowledge of security tools and techniques for cloud, Kubernetes, and containerized environments.
    • Any of the relevant certification such as OSCP, Kubernetes Security Specialist, AWS Certified Security – Specialty, or Microsoft Azure Security Engineer.

Saviynt is an amazing place to work. We are a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work. You will experience tremendous growth and learning opportunities through challenging yet rewarding work that directly impacts our customers, all within a welcoming and positive work environment. If you're resilient and enjoy working in a dynamic environment you belong with us!

Saviynt is an equal opportunity employer, and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Similar Jobs

Assystems - Security Analyst / Incident Responder L2/L3

Assystems

Gurugram, Haryana, India (On-Site)
7 Months ago
Highspot - Principal Security Engineer

Highspot

Hyderabad, Telangana, India (Hybrid)
1 Month ago
Tide - Senior Threat Detection Engineer

Tide

Serbia (Hybrid)
1 Month ago
fluence - Product Security Architect

fluence

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
DOTSOFT SA - Security Engineer

DOTSOFT SA

Greece (On-Site)
3 Months ago
Illumina - Senior Software Test Engineer

Illumina

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Amber - QA Tester (Graveyard Shift)

Amber

Manila, Metro Manila, Philippines (On-Site)
9 Months ago
Game story studio (Different language) - QA Tester

Game story studio (Different language)

(On-Site)
1 Week ago
Trellix - Staff Software Development Engineer in Test

Trellix

Bengaluru, Karnataka, India (On-Site)
2 Weeks ago
extreme network - Staff QA Software Engineer - WLAN/Wi-Fi Testing - Python Automation

extreme network

Bengaluru, Karnataka, India (Hybrid)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Take-Two Interactive - Senior Application Security Engineer

Take-Two Interactive

Texas, United States (Remote)
4 Days ago
Highspot - Security Engineer

Highspot

Hyderabad, Telangana, India (Hybrid)
1 Month ago
PwC - 1-10yrs Application for Cyber- Kolkata DN 57 - RDC

PwC

Kolkata, West Bengal, India (On-Site)
8 Months ago
TransPerfect - Localization QA Lead

TransPerfect

Warsaw, Masovian Voivodeship, Poland (On-Site)
1 Month ago
Opendoor - Detection Engineer - Security (SIEM, Go or Python) B2B

Opendoor

Kraków, Lesser Poland Voivodeship, Poland (Hybrid)
1 Month ago
TransPerfect - Simplified Chinese Localization Games Tester

TransPerfect

Warsaw, Masovian Voivodeship, Poland (On-Site)
1 Month ago
Take-Two Interactive - Product Security Architect

Take-Two Interactive

Dublin, County Dublin, Ireland (On-Site)
1 Month ago
HCL Tech - Senior analyst

HCL Tech

Sofia, Sofia City Province, Bulgaria (On-Site)
2 Weeks ago
Ion - Senior DevSecOps Engineer, Italy

Ion

Collecchio, Emilia-Romagna, Italy (On-Site)
8 Months ago
Cadence - Sr Systems Information Security Analyst

Cadence

Noida, Uttar Pradesh, India (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

ansira - Senior Associate

ansira

Pune, Maharashtra, India (Hybrid)
1 Day ago
NextHire - Hi- Tech - 3D Animator

NextHire

Gurugram, Haryana, India (On-Site)
1 Year ago
Reltio - Senior UI Engineer

Reltio

Bengaluru, Karnataka, India (Hybrid)
2 Weeks ago
Capgemini - Principal Software Engineer

Capgemini

Coimbatore, Tamil Nadu, India (On-Site)
1 Month ago
Cred - Business - Supply Integrations

Cred

Bengaluru, Karnataka, India (On-Site)
1 Week ago
Nagarro - Associate Staff Engineer, BI Reporting

Nagarro

India (Remote)
8 Months ago
Sprinkler - Site Reliability Manager

Sprinkler

Bengaluru, Karnataka, India (On-Site)
1 Month ago
GoTo Group - SDET - Growth

GoTo Group

Bengaluru, Karnataka, India (On-Site)
8 Months ago
bounteous - Diversity Hiring Program: Beyond Your Break

bounteous

Chennai, Tamil Nadu, India (Hybrid)
8 Months ago
MiQ - Associate Manager

MiQ

Bengaluru, Karnataka, India (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

Testing Jobs

Google - Test Engineer, Pixel Software Security

Google

New Taipei, New Taipei City, Taiwan (On-Site)
2 Months ago
Motorola solutions - Senior Performance Test Engineer

Motorola solutions

Cork, County Cork, Ireland (On-Site)
1 Month ago
extreme network - Manager of QA Engineering – Automation & Application Testing (Python, Selenium, WiFi, Cloud)

extreme network

Bengaluru, Karnataka, India (Hybrid)
2 Months ago
Ubisoft - Development Tester Intern

Ubisoft

Taguig, Metro Manila, Philippines (On-Site)
3 Weeks ago
Larian Studios - Technical QA Tester Internship

Larian Studios

Quebec, Canada (On-Site)
2 Months ago
endava - Senior Python Automation Tester

endava

Cluj-Napoca, Cluj County, Romania (On-Site)
2 Weeks ago
luxsoft - Regular Test Engineer with WLAN/ Bluetooth

luxsoft

Bucharest, Bucharest, Romania (On-Site)
1 Month ago
OKX - Head of Monitoring & Testing

OKX

New York, United States (Hybrid)
1 Month ago
Qualcomm - Engineer- Power and Thermal Test Engineer

Qualcomm

Hyderabad, Telangana, India (On-Site)
3 Weeks ago
CME Group - Software Engineer in Test – Integration

CME Group

Belfast, Northern Ireland, United Kingdom (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

About The Company

Bengaluru, Karnataka, India (Hybrid)

Kraków, Lesser Poland Voivodeship, Poland (Remote)

El Segundo, California, United States (On-Site)

Bengaluru, Karnataka, India (Hybrid)

El Segundo, California, United States (Remote)

El Segundo, California, United States (Remote)

London, England, United Kingdom (On-Site)

Singapore (Remote)

St. Louis, Missouri, United States (On-Site)

View All Jobs

Get notified when new jobs are added by Saviynt

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug