Job Description
Insight Global is seeking a remote Container Security SME to join a global consulting firm. This person would be joining their Attack Surface Management team and would work to strengthen security posture across the organizations cloud-native technology stack. This contractor will provide deep technical expertise in container and Kubernetes security, drive vulnerability remediation, and shape security standards for
containerized workloads across BCG’s multi-cloud environment.
Success in this role will be measured by the following outcomes:
-Assess and harden containerized environments, identifying gaps and driving remediation to
closure with development and platform teams.
-Own the end-to-end vulnerability management lifecycle for container workloads – from scan
configuration through prioritization, tracking, and remediation coordination.
-Advice on securing the container build and deployment pipeline, including image integrity and
registry governance.
-Configure and optimize our CNAPP tooling to meet BCG-specific visibility and compliance
requirements.
-Conduct threat modeling for containerized and serverless architectures.
-Design and implement automated remediation workflows to reduce time-to-resolution.
-Deliver security metrics and reporting that give leadership clear visibility into posture and
progress.
-Maintain detailed tracking of all identified vulnerabilities through their full remediation lifecycle,
including ownership assignment, status updates, and closure verification.
-Monitor and enforce remediation SLAs across teams, flagging breaches early and driving
accountability for timely resolution.
-Manage the security exception and escalation process
Compensation:
$13/hr to $17/hr
Exact compensation may vary based on several factors, including skills, experience, and education.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401K retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
-4+ years of cloud security experience with a primary focus on container security and vulnerability management
-Hands-on experience securing container orchestration platforms and workloads at
scale (working with hundreds of thousands of vulnerabilities)
-Experience with Wiz or Orca
-Production experience with CNAPP/CWPP tooling in an enterprise setting
•Familiarity with at least one major cloud provider (AWS, Azure, or GCP)
-Strong communication skills – able to translate technical findings into clear, actionable guidance
-Experience with Infrastructure as Code security scanning (Terraform, CloudFormation, or Helm
chart analysis)
Nice to Have Skills & Experience
-Proficiency in scripting (Python, Bash, or Go) for automation and tool integration
-Any of the following certifications: CKS, CKA, CCSP, CCSK, AWS Security Specialty, Azure Security Engineer, GCP Professional Cloud Security Engineer
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.