Cybersecurity Consultant - DevSecOps / Kubernetes

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible. Join us and help the world’s leading organizations unlock the value of technology and build a more sustainable, more inclusive world. 

Role Overview

We are looking for a Confirmed Cybersecurity Consultant to support our team in DevSecOps & Kubernetes security domains.
The consultant will work on advanced threat detection engineering and threat hunting, with a strong focus on Linux, containerized, Kubernetes and cloud-native environments.

You will collaborate with other teams to strengthen early detection of cyber threats using state-of-the-art SIEM and runtime detection technologies.

Key Responsibilities

• Design, develop, and maintain threat-informed detection rules based on cyber threat intelligence, adversary techniques, and incident feedback
• Engineer and deploy detection use cases for Linux workloads, including physical, virtual, and containerised systems
• Integrate and validate security telemetry (container runtime events, Kubernetes audit logs, cloud control-plane logs) into SIEM platforms
• Perform continuous tuning and optimization of detections to reduce false positives and improve coverage and performance
• Conduct proactive threat hunting and retro-hunting activities and convert findings into production-grade detections
• Contribute to detection coverage mapping, gap analysis, and risk-based prioritization
• Produce and maintain technical documentation (specifications, validation evidence, runbooks, reporting)
• Master’s degree in IT or Cybersecurity

Required Skills & Experience

Mandatory

• European Union nationality (EU-27)
• Fluent English (working language)
• Minimum 6 years of experience in Cybersecurity
• At least one recognized cybersecurity certification (e.g. CISSP, CISM, GCED, GCIH, Security+, CEH, cloud security certs, etc.)
• Strong expertise in Kubernetes security and attacker techniques
• Proven experience in threat detection engineering and/or threat hunting
• Experience with SIEM platforms, preferably Splunk
• Ability to work in a multicultural, international environment
• Eligible for EU security clearance

Strong Assets

• Cloud security (AWS and/or Azure)
• Detection content lifecycle, Git-based workflows, CI/CD or DetectionOps

Soft skills

• Strong analytical and problem-solving skills
• Ability to work autonomously in operational contexts
• Clear technical communication and documentation skills
• Team-oriented mindset in international environments
• Risk-aware and security-focused approach

Capgemini is an AI-powered global business and technology transformation partner, delivering tangible business value. We imagine the future of organizations and make it real with AI, technology and people. With our strong heritage of nearly 60 years, we are a responsible and diverse group of 420,000 team members in more than 50 countries. We deliver end-to-end services and solutions with our deep industry expertise and strong partner ecosystem, leveraging our capabilities across strategy, technology, design, engineering and business operations. The Group reported 2024 global revenues of €22.1 billion.
Make it real | www.capgemini.com