Back to search
RevelSI Linkedin · Posted 5d ago

OpenShift Platform Security Engineer

Bucharest

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

REVELSI is a global cybersecurity, AI, software, and infrastructure services organization. We work with worldwide enterprises to design, build, secure, and operate the systems their business depends on.

Our top priority is safeguarding the fast-evolving global infrastructures and technologies.

We integrate cybersecurity into infrastructure development and operational processes, alongside software development and AI-driven products, to proactively stay at the leading edge of industry advancements.



REVELSI TEA

MAt REVELSI, we combine deep technical expertise with a Silicon Valley-inspired mindset: agile, innovative, and collaborative

.We’re a collaborative team that values performance and a positive work environment. We are committed to delivering high-quality results, supporting each other, and fostering a professional and friendly atmosphere

.We’re looking for a team player with specialized skills, ready to make an impact alongside experts in cybersecurity, network design, architecture, AI & software development, and IT management

.You’ll collaborate with experienced IT (Security) professionals, expand your skills, and enjoy the journey in a team that embraces challenges with energy and enthusiasm



YOUR DAY TO DAY

Onboarding Security Review

  • Evaluate application onboarding requests to the OpenShift platform, verifying that vulnerabilities identified in the development pipeline have been remediated prior to promotion
  • Assess requested network communications and segmentation policies for appropriateness and least-privilege alignment
  • Approve, reject, or conditionally approve onboarding requests with documented rationale


Policy as Code & Automation

  • Partner with the platform engineering team to design and implement policy-as-code capabilities using OPA Gatekeeper, reducing manual review overhead
  • Develop and maintain admission control policies capable of breaking builds when security posture requirements are not met
  • Continuously mature the automated policy library to reflect evolving threat landscape and compliance requirements


Platform Security & Hardening

  • Review and validate that build configurations and deployment manifests adhere to secure-by-default standards
  • Ensure centralized, continuous logging is properly configured across workloads and the platform layer
  • Manage and enforce Role-Based Access Control (RBAC) across the OpenShift environment, ensuring least-privilege access principles are applied


Tooling & Operations

  • Operate and tune Red Hat Advanced Cluster Security (ACS) for vulnerability management, runtime threat detection, and compliance
  • Leverage Guardicore for microsegmentation policy enforcement and network visibility (Managed by same team -resource will collaborate with them)
  • Work with GitHub Advanced Security to integrate SAST/SCA findings into the onboarding gate process (Managed by same team -resource will collaborate with them)
  • Administer and support BeyondTrust for Just-in-Time (JIT) privileged access workflows on the platform (Managed by same team -resource will collaborate with them)


Required Qualifications

  • Bachelor’s degree in Data Science, Computer Science, Information Security, or a related field
  • Around 4+ years of experience in security engineering, DevSecOps, or platform security
  • roles
  • Strong hands-on experience with OpenShift or Kubernetes in enterprise environments, including RBAC, policy enforcement, and workload security
  • Practical experience working with policy-as-code frameworks such as OPA/Gatekeeper, Kyverno, or Falco
  • Good understanding of CI/CD pipeline security, including integration of security checks and build-break enforcement mechanisms
  • Experience designing and implementing RBAC models within containerized platforms
  • Solid knowledge of network segmentation and micro-segmentation concepts in cloud or container environments
  • Strong understanding of vulnerability management processes and remediation validation
  • Experience with security tools such as ACS (StackRox), Guardicore, GitHub Advanced Security, or BeyondTrust is considered a plus
  • Relevant certifications (e.g., Red Hat OpenShift, or similar) are considered an advantage
  • Familiarity with security frameworks such as NIST or CIS benchmarks applied to container environments is a plus
  • Scripting and automation skills using Python, Bash, Go, or similar languages are an advantage
  • Strong communication skills, with the ability to clearly articulate security requirements to development teams without blocking delivery
  • Comfortable working cross-functionally with security and platform engineering teams
  • Detail-oriented mindset with the ability to document processes and build reusable, scalable solutions
  • Willing to work from Monday to Friday between 12:00 and 21:00 with 1 hour lunch break, in a hybrid system (4 days from our office)


WE VALUE OUR EMPLOYEES:

At REVELSI, we create an environment that supports your well-being, growth, and work-life balance:

  • Private healthcare & medical insurance
  • Private dental services
  • Meal vouchers
  • Referral bonus program
  • Learning & development opportunities
  • Team buildings & events
  • Pizza day and free drinks at the office
  • Seasonal gifts (Christmas / Easter)
  • 21 days PTO, increasing up to 25 based on seniority


Ready to Join Us?

Click “Apply” and let’s get started!


Every day is an opportunity to grow and go beyond our limits! We embrace challenges and succeed together as a team—because great things happen when we collaborate.

Equal Opportunity Employment: REVELSI is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations, and ordinances.

Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent