Cloud Security Engineer

Job Title: Cloud Security Engineer Google Cloud Platform

Location: Frisco, TX / Auburn Hills, MI

Job Description:

Overview
We are seeking a skilled and motivated Cloud Security Engineer with expertise in Google Cloud Platform (Google Cloud Platform) to join our dynamic security team. The ideal candidate will be responsible for ensuring the security, compliance, and overall integrity of our Google Cloud Platform infrastructure. This individual will work closely with cloud architects, system administrators, and application developers to implement secure cloud environments, configure security monitoring, perform vulnerability assessments, investigate security alerts, and maintain a robust security posture within the Google Cloud Platform ecosystem.

• CNAPP Cloud Native Application Protection Platform
• CSPM Cloud Security Posture Management
  • Prisma Cloud, AWS security Hub, Azure Defender
  • AWS Cloud watch
  • Splunk
• Posture, SIEM, GuardDuty, Trails, IAM
• Network/Routing/Firewall experiences

Key Responsibilities

• Cloud Security Management:
• Design, implement, and manage security controls within Google Cloud Platform environments.
• Implement security best practices for cloud deployments and services.
• Perform regular security assessments to identify vulnerabilities in Google Cloud Platform infrastructure and services.
• Develop and enforce security policies, standards, and procedures for Google Cloud Platform deployments.
• Identity and Access Management (IAM):
• Manage Google Cloud Platform IAM roles, policies, and permissions to ensure least privilege access across the cloud infrastructure.
• Review IAM configurations and ensure that users and services have appropriate access levels to Google Cloud Platform resources.
• Incident Response and Remediation:
• Respond to and investigate security incidents, including detecting, analyzing, and mitigating threats in Google Cloud Platform.
• Develop incident response procedures for cloud environments and provide input into cloud security incident handling processes.
• Compliance and Risk Management:
• Ensure compliance with industry standards and regulations (e.g., GDPR, HIPAA, SOC 2, PCI-DSS) by implementing proper security controls in the cloud environment.
• Conduct regular audits and assessments of the Google Cloud Platform environment to ensure compliance with internal security policies and external regulations.
• Security Automation and Monitoring:
• Implement automated security solutions and monitoring tools to proactively detect and prevent threats in Google Cloud Platform environments.
• Leverage Google Cloud Platform security tools such as Security Command Center, Cloud Armor, and VPC Service Controls to continuously monitor and protect cloud assets.
• Collaboration and Consultation:
• Work closely with cloud architects, DevOps, and application teams to integrate security into the development and deployment lifecycle.
• Provide security expertise and guidance during cloud architecture reviews and service deployment.
• Documentation and Reporting:
• Create and maintain documentation related to Google Cloud Platform security controls, policies, and procedures.
• Provide regular security status reports, metrics, and analysis to leadership and relevant stakeholders.

Required Skills and Qualifications
Experience:

• 10 years of experience in cloud security, with a focus on Google Cloud Platform (Google Cloud Platform).
• 10 years of relevant experience (IT or Cybersecurity)
• 5 years of experience with focus on Google Cloud Platform (Google Cloud Platform)
• Strong understanding of cloud security principles, best practices, and compliance

• CNAPP Cloud Native Application Protection Platform
• CSPM Cloud Security Posture Management
  • Prisma Cloud, AWS security Hub, Azure Defender
  • AWS Cloud watch
  • Splunk
• Posture, SIEM, GuardDuty, Trails, IAM
• Network/Routing/Firewall experiences

frameworks.

• Experience with Google Cloud Platform security tools such as Cloud Identity, IAM, Cloud Security Command Center, VPC Service Controls, Cloud Armor, and others.
• Familiarity with security monitoring tools and SIEM systems (e.g., Splunk, Datadog, Stack driver).

Technical Skills:

• In-depth knowledge of Google Cloud Platform infrastructure, services, and security features.
• Hands-on experience securing cloud-native applications, containerization (eg. Kubernetes), and serverless environments.
• Experience with identity and access management (IAM) and network security in Google Cloud Platform.
• Proficient with cloud security automation and scripting (e.g., Terraform, Python, Shell scripting).
• Well versed with change management planning, coordination and implementation following the established process to the organization

Education:

• Bachelor s degree in computer science, Information Security, or a related field (or equivalent work experience).

Certifications:

• Google Cloud Professional Cloud Security Engineer (preferred).
• Additional certifications in cloud security (e.g., CISSP, CCSP, CompTIA Security ) are a plus.

Preferred Skills and Experience:

• Experience with Google Cloud Platform-based security solutions and services like Cloud Key Management, Cloud HSM, and Cloud Logging.
• Knowledge of container orchestration platforms (e.g., Kubernetes) and security bestpractices for containers in Google Cloud Platform.
• Experience with threat modeling, penetration testing, and vulnerability management in the cloud.
• Familiarity with DevSecOps practices and secure CI/CD pipeline development.

Key Attributes:

• Strong problem-solving and analytical skills.
• Excellent communication and collaboration abilities.
• Ability to work in a fast-paced, dynamic environment.