Senior Google Cloud Security Engineer

About The Position

Requirements

• Bachelor's degree (or higher) in Cybersecurity, Computer Science, Information Systems, Engineering, or related field (or equivalent practical experience)
• 7+ years of professional experience in cybersecurity, including significant hands-on experience in cloud security architecture and engineering
• 3+ years securing Google Cloud Platform (GCP) environments across identity, network security, encryption, and logging/monitoring
• Hands-on experience administering or engineering detections in a modern SIEM (Google Security Operations/Chronicle preferred; comparable SIEM acceptable)
• Proven track record partnering with cloud platform teams and application teams to deliver security improvements through engineering, automation, and standards
• Strong grounding in cloud security architecture: least privilege, defense-in-depth, secure network design, encryption, and secure delivery practices
• Practical knowledge of GCP security capabilities (IAM, org/policy guardrails, security posture management concepts, logging/monitoring, key management/encryption)
• Security automation and infrastructure-as-code experience (Terraform or equivalent) and scripting (Python or equivalent)
• Detection engineering fundamentals: log onboarding, parsing/normalization, query languages, alert tuning, and dashboarding
• Threat modeling, security review, and risk translation into pragmatic engineering requirements
• Strong communication and ability to coordinate across multiple technical teams

Nice To Haves

• Google Professional Cloud Security Engineer (highly relevant)
• CSSP and/or CISSP
• Relevant GIAC certifications aligned to cloud/IR/detection engineering (e.g. incident response/threat detection), or equivalent credentials

Responsibilities

• Defining and implementing secure GCP reference architectures (landing zone, org/policy guardrails, identity, network segmentation, encryption, logging) and reusable security patterns.
• Engineering preventive and detective controls using automation and infrastructure-as-code (guardrails, baselines, continuous configuration enforcement).
• Coordinating with platform and application teams to integrate security into CI/CD pipelines and deployment workflows (including workload/container security).
• Owning SecOps SIEM administration and detection engineering: log onboarding, parsing/normalization, rule development, tuning, dashboards, and alerting.
• Driving cloud security risk reduction through security reviews, threat modeling, and remediation of critical findings across GCP services.
• Contributing to audit readiness and control evidence for cloud controls (access management, logging, encryption, vulnerability management).
• Partner with the Google Cloud team to design secure cloud architectures, including IAM/least privilege, network security, encryption, secrets management, and logging/monitoring standards.
• Define and maintain GCP security reference architectures and guardrails aligned to enterprise security policies and industry frameworks (e.g., risk management and control objectives).
• Lead threat modeling and architecture risk reviews for new GCP services, platforms, and major migrations; document decisions and required controls/compensations.
• Engineer scalable security controls using automation and infrastructure-as-code (baseline policies, configuration validation, continuous compliance checks).
• Integrate security controls into CI/CD (policy checks, IaC validation, secrets detection, artifact/image scanning) to enable secure delivery with minimal friction.
• Develop reusable security modules, patterns, and documentation that drive consistent adoption across teams.
• Administer and mature the SecOps SIEM platform: data ingestion, log onboarding, parsing/normalization, content management, and access controls.
• Lead detection engineering: build, tune, and maintain high-fidelity detections and analytics based on threat intelligence and observed attacker techniques; reduce false positives through iterative tuning.
• Develop dashboards and reporting to support SOC performance, cloud visibility, and executive-level risk insights.
• Partner with Incident Response/Threat Hunting/Cloud Engineering to investigate cloud events and improve telemetry and detections.
• Drive remediation of critical/high cloud findings by coordinating with owners, validating fixes, and ensuring controls remain effective over time.
• Support internal and external audits by producing evidence for cloud control operation (logging, access governance, encryption, vulnerability management, change control).
• Contribute to security standards, patterns, and runbooks; participate in lessons learned and resilience readiness improvements.

Benefits

• Develop faster - with our commitment to the best professional development.
• Perform better - as part of a high-performance, empowering culture.
• Shape an industry - with a market leader that continues to drive innovation.
• Make a difference -by helping improve oral health worldwide.