What are the responsibilities and job description for the GCP IAM Security Architect position at capgemini?
Job Summary:
We are looking for an experienced GCP IAM Security Architect to design and implement comprehensive identity and access management solutions within Google Cloud Platform (GCP). The ideal candidate will be responsible for establishing security frameworks, best practices, and policies to ensure the secure management of user identities and access rights across our cloud environment.
Key Responsibilities:
- Architecture Design: Develop and implement robust IAM architectures for GCP, ensuring secure access to cloud resources while adhering to organizational security policies.
- Policy Development: Create and enforce IAM policies, procedures, and standards that comply with industry regulations and best practices.
- Risk Assessment: Conduct regular security assessments and audits of IAM configurations in GCP to identify vulnerabilities and recommend mitigation strategies.
- Identity Governance: Design and manage identity governance processes, including role-based access control (RBAC), entitlement management, and user lifecycle management.
- Integration: Collaborate with development, operations, and security teams to integrate IAM solutions with cloud applications and services seamlessly.
- Monitoring and Incident Response: Implement monitoring and logging solutions to detect and respond to IAM-related security incidents effectively.
- Training and Awareness: Provide guidance and training to technical teams on IAM best practices and emerging threats in cloud security.
- Documentation: Maintain comprehensive documentation of IAM architectures, policies, and procedures to support compliance and knowledge sharing.
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Advanced degree preferred.
- 5 years of experience in information security, with a focus on identity and access management in cloud environments, particularly GCP.
- Strong knowledge of GCP IAM features, including service accounts, IAM roles, and Cloud Identity.
- Familiarity with cloud security frameworks (e.g., NIST, CIS, ISO 27001) and regulatory compliance standards.
- Experience with identity governance and administration (IGA) solutions and tools.
- Excellent analytical and problem-solving skills, with a proactive approach to security.
- Strong communication and interpersonal skills, with the ability to influence and collaborate across teams.
- Relevant certifications (e.g., Google Cloud Professional Cloud Security Engineer, CISSP, or CISM) are highly desirable?
The pay range that the employer in good faith reasonably expects to pay for this position is $51.89/hour - $81.08/hour. Our benefits include medical, dental, vision and retirement benefits. Applications will be accepted on an ongoing basis.
Tundra Technical Solutions is among North America’s leading providers of Staffing and Consulting Services. Our success and our clients’ success are built on a foundation of service excellence. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Unincorporated LA County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: client provided property, including hardware (both of which may include data) entrusted to you from theft, loss or damage; return all portable client computer hardware in your possession (including the data contained therein) upon completion of the assignment, and; maintain the confidentiality of client proprietary, confidential, or non-public information. In addition, job duties require access to secure and protected client information technology systems and related data security obligations.
Salary : $52 - $81