GCP Security Engineer

About The Position

Requirements

• Google Cloud Professional Cloud Architect or Cloud Security Engineer certification.
• In-depth knowledge of GCP security services and solutions including IAM, Cloud Armor, Security Command Center, Chronicle, KMS, DLP, and VPC Service Controls.
• Proven experience designing and implementing enterprise security solutions integrated into Google Cloud environments and landing zones.
• Hands-on expertise managing cloud infrastructure automation using Terraform or equivalent IaC tools.
• Strong understanding of network security, identity and access management, encryption,threat detection, and compliance frameworks (e.g., GDPR, HIPAA, NIST).
• Experience working with hybrid connectivity, private service connect, and secure multi-project architectures.
• Excellent communication skills with ability to translate complex security concepts to technicaland non-technical stakeholders.
• Knowledge of GCP logging, observability, SRE
• Experience using Docker within container orchestration platforms such as EKS/GKE.
• Hands-on Python and Unix shell scripting is required.

Nice To Haves

• Experience with DevSecOps practices, CI/CD security integration, and container security on GCP (GKE).
• Familiarity with other cloud environments (AWS, Azure) and multi-cloud security design.
• Knowledge of security frameworks such as CIS, ISO 27001, and Cloud Security Alliance guidance.
• Experience conducting security incident response and vulnerability management for cloud systems.
• Hands on knowledge of Helm charts
• Hands-on experience deploying and managing Kubernetes infrastructure with Terraform Enterprise.
• Certified Kubernetes Administrator (CKA) and/or Certified Kubernetes Application Developer (CKAD) is a plus

Responsibilities

• Deploy comprehensive security solutions leveraging GCP's native security offerings, including IAM, Cloud Armor, Security Command Center, Chronicle, Key Management, and VPC Service Controls.
• Lead the design and implementation of secure enterprise landing zones ensuring multi-project, multi-environment cloud deployments meet stringent security requirements.
• Collaborate with cloud engineers, DevOps, and security teams to embed security into automated CI/CD pipelines and infrastructure as code using Terraform.
• Experience with GCP foundation services, Resource hierarchy, IAM, KMS, Asset inventory, security, networking, observability etc.
• Develop and enforce cloud security policies, guardrails, and identity/access controls to safeguard cloud workloads and data.
• Design and integrate threat detection, incident response, and compliance monitoring solutions tailored to cloud-native environments.
• Conduct security assessments, risk analysis, and provide actionable remediation plans to mitigate vulnerabilities in cloud infrastructure.
• Provide subject matter expertise on cloud security best practices, regulatory requirements, and emerging threats across hybrid and multi-cloud architectures.
• Mentor teams on secure cloud architecture principles and promote security-first thinking across projects.
• Stay current with GCP security advancements and incorporate innovations to continuously strengthen the security posture.

Benefits

• Flexible vacation policy; time is not limited, allocated, or accrued
• 16 paid holidays throughout the year
• Generous parental leave and new parent transition program
• Tuition reimbursement
• Corporate gift matching program