Role: Kubernetes / Cloud Security Architect-- Location: Phoniex, AZ (Onsite--Need Locals to AZ)

[gir...@vrntech.us]

Hi All,

 

Please find the position below and let me know if you are interested.

 

Role: Kubernetes / Cloud Security Architect

Location: Phoenix, AZ (Onsite--Need Locals to AZ)

Duration: 12+ Months

 

 

***Need Locals to Phoenix, AZ***

 

 

Job Description:

• Led the architecture and design of secure Kubernetes platforms (EKS, GKE, OpenShift) across public, private, and hybrid cloud environments, ensuring scalability, resilience, and compliance.
• Implemented secure-by-default Kubernetes controls including RBAC, Workload Identity, Network Policies, Pod Security Standards, Secrets Management, and Policy-as-Code using OPA/Gatekeeper.
• Developed and standardized Kubernetes security reference architectures, reusable modules, and enterprise security blueprints aligned with governance and compliance requirements.
• Conducted Proof of Concepts (PoCs) for emerging Kubernetes and container security technologies, evaluating their effectiveness and recommending enterprise-wide adoption strategies.
• Performed Kubernetes and cloud security posture assessments against CIS Benchmarks, Cloud Control Matrix (CCM), and enterprise security standards, driving remediation initiatives.
• Automated security controls using Infrastructure-as-Code (Terraform, CloudFormation) and Policy-as-Code frameworks to ensure consistent security enforcement across environments.
• Integrated security into CI/CD pipelines and DevSecOps workflows, incorporating image scanning, vulnerability management, compliance checks, and automated policy validation.
• Implemented container and runtime security solutions, including vulnerability scanning, workload protection, image security, and threat detection for Kubernetes workloads.
• Designed and secured cloud-native architectures utilizing containers, microservices, serverless technologies, and multi-cloud deployment patterns across AWS and GCP.
• Configured and managed Kubernetes networking security, including VPC design, network segmentation, ingress/egress controls, service-to-service encryption, and secure communication patterns.
• Implemented Service Mesh and Zero Trust security architectures using technologies such as Istio to secure east-west traffic and enforce application-level security policies.
• Managed Kubernetes secrets and certificate lifecycle using enterprise secrets management solutions including HashiCorp Vault, AWS Secrets Manager, and GCP Secret Manager.
• Collaborated with Information Security, Cloud Engineering, Enterprise Architecture, and Development teams to embed security into Kubernetes platforms and developer workflows.
• Served as a Kubernetes and Cloud Security SME, providing architecture guidance, security reviews, and best practices for secure deployment of containerized applications.
• Supported Agile development environments, participating in architecture reviews, threat modeling, risk assessments, and security design discussions.
• Utilized OpenShift, AWS, GCP, Kubernetes, Terraform, GitOps, OPA/Gatekeeper, DevSecOps, and cloud security best practices to deliver scalable and secure enterprise solutions.

 

 

Thanks & Regards,

 

Girish Vanukuri

VRN Technologies LLC

1908 Yaupon Trail, Suite 203, Cedar Park, TX 78613

Email: gir...@vrntech.us 

Website: www.vrntech.us

LinkedIn: https://www.linkedin.com/in/girish-vanukuri-98b208113/