 Search for More Jobs Forward job to a friend Quick ApplyApply by creating/using an accountSign in
Language
Français
Español
GKE - Google Kubernetes Engineer
The configuration must disable the Kubernetes Web UI (Dashboard) when running on Kubernetes Engine.
Container-Optimized OS (COS) must be enabled for Kubernetes Engine Clusters Node image Non-COS node images will require additional scrutiny for hardening and security instrumentation Ensure GKE clusters are created with Private Cluster enabled. Use Private IP only on each nodes. GCP IAM Access Controls Authentication IAM authentication must be used for GKE authentication Enable and apply restrictive Pod Security policies to prevent users or service accounts Pod Security policies can limit volume mounts, especially hostPath Resource Provisioning & Restricted Images Google Container Registry GKE nodes Label/Tag strategy and appropriate label instances (key-value pairs) to support all asset management objectives. The Cloud IaaS or Security documentation and requirements for audit Data Encryption - Rest/Transit - Symmetric/Asymmetric Google KMS for key Management System Container, Docker, GKE cron, scheduling, Config Maps Terraform programming using Modules for Jenkins Pipeline, Null resources, Auto scaling | ||||||
