A Snapshot of Your Day
- The primary responsibility of this role is to improve the security posture of Microsoft environments and containerized applications. The specialist will implement hardening strategies, handle vulnerabilities, ensure compliance, and integrate security into development pipelines to protect systems from evolving threats. · Strengthen the security of Microsoft systems (Windows Server, Active Directory, Azure) and containerized platforms (Docker, Kubernetes, AKS). Implement Microsoft Defender for Containers and related tools for threat detection and posture management. · Apply secure configuration baselines for Microsoft systems using CIS Benchmarks and Microsoft Security Baselines. Harden container images and Kubernetes deployments by implementing the least privilege, disabling root access, and using read-only file systems
How You’ll Make an Impact
- Conduct vulnerability assessments using tools like Microsoft Defender, Snyk, and Qualys. Remediate vulnerabilities in OS, container images, and workloads across hybrid and multicloud environments
- Ensure consistency to security standards such as NIST SP 800-190, CIS, and Microsoft Cloud Security Benchmark. Maintain audit trails and documentation for regulatory compliance. Supervise and respond to threats using SIEM systems and Defender XDR. Implement runtime protection and anomaly detection for Kubernetes clusters.
- Define and implement network policies, RBAC, and resource limits for containers. Use Azure Policy and Gatekeeper to prevent non-compliant deployments.
- Deploy observability tools and log analytics to supervise sensitive actions and detect incidents. Enable binary drift detection and audit logging for container environments.
- Automate security scans and policy enforcement in CI/CD pipelines. Integrate container security checks using tools like Snyk, Aqua, and Defender for Containers.
- Maintain detailed documentation of security configurations, policies, procedures, and incident responses. Build security benchmarks and profiles for container apps
What You Bring
- Bachelor's degree in Computer Science, Cybersecurity, or related field.
- 3+ years of experience in Microsoft system hardening and container security.
- Proficiency with Docker, Kubernetes, AKS, and CI/CD tools.
- Experience with security tools: Microsoft Defender, Snyk, Qualys, SIEM platforms.
- Knowledge of cloud security (Azure, AWS, GCP) and infrastructure-as-code (Terraform, ARM).
- Relevant certifications (e.g., CKS, AZ-500, CISSP) preferred.
Who is Siemens Gamesa?
Siemens Gamesa is part of Siemens Energy, a global leader in energy technology with a rich legacy of innovation spanning over 150 years. Together, we are committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. As a leading player in the wind industry and manufacturer of wind turbines, we are passionate about driving the energy transition and providing innovative solutions that meet the growing energy demand of the global community. At Siemens Gamesa, we are always looking for dedicated individuals to join our team and support our focus on energy transformation.
Our Commitment to Diversity
Lucky for us, we are not all the same. Through diversity, we generate power. We run on inclusion and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.
Rewards/Benefits
- All employees are automatically covered under the Medical Insurance. Company paid considerable Family floater cover covering employee, spouse and 2 dependent children up to 25 years of age.
- Siemens Gamesa provides an option to opt for Meal Card to all its employees which will be as per the terms and conditions prescribed in the company policy as a part of CTC, tax saving measure.
