GCP Cloud Security Engineer

We are seeking a skilled and motivated Cloud Security Engineer with expertise in Google Cloud Platform (GCP) to join our dynamic security team. The ideal candidate will be responsible for ensuring the security, compliance, and overall integrity of our GCP infrastructure. This individual will work closely with cloud architects, system administrators, and application developers to implement secure cloud environments, configure security monitoring, perform vulnerability assessments, investigate security alerts, and maintain a robust security posture within the GCP ecosystem.

Key Responsibilities

• Cloud Security Management:
• Design, implement, and manage security controls within GCP environments.
• Implement security best practices for cloud deployments and services.
• Perform regular security assessments to identify vulnerabilities in GCP infrastructure and services.
• Develop and enforce security policies, standards, and procedures for GCP deployments.
• Identity and Access Management (IAM):
• Manage GCP IAM roles, policies, and permissions to ensure least privilege access across the cloud infrastructure.
• Review IAM configurations and ensure that users and services have appropriate access levels to GCP resources.
• Incident Response and Remediation:
• Respond to and investigate security incidents, including detecting, analyzing, and mitigating threats in GCP.
• Develop incident response procedures for cloud environments and provide input into cloud security incident handling processes.
• Compliance and Risk Management:
• Ensure compliance with industry standards and regulations (e.g., GDPR, HIPAA, SOC 2, PCI-DSS) by implementing proper security controls in the cloud environment.
• Conduct regular audits and assessments of the GCP environment to ensure compliance with internal security policies and external regulations.
• Security Automation and Monitoring:
• Implement automated security solutions and monitoring tools to proactively detect and prevent threats in GCP environments.
• Leverage GCP security tools such as Security Command Center, Cloud Armor, and VPC Service Controls to continuously monitor and protect cloud assets.
• Collaboration and Consultation:
• Work closely with cloud architects, DevOps, and application teams to integrate security into the development and deployment lifecycle.
• Provide security expertise and guidance during cloud architecture reviews and service deployment.
• Documentation and Reporting:
• Create and maintain documentation related to GCP security controls, policies, and procedures.
• Provide regular security status reports, metrics, and analysis to leadership and relevant stakeholders.

Required Skills and Qualifications

Experience:

• 10 years of experience in cloud security, with a focus on Google Cloud Platform (GCP).
• 10 years of relevant experience (IT or Cybersecurity)
• 5 years of experience with focus on Google Cloud Platform (GCP)
• Strong understanding of cloud security principles, best practices, and compliance

frameworks.

• Experience with GCP security tools such as Cloud Identity, IAM, Cloud Security Command Center, VPC Service Controls, Cloud Armor, and others.
• Familiarity with security monitoring tools and SIEM systems (e.g., Splunk, Datadog, Stack driver).

Technical Skills:

• In-depth knowledge of GCP infrastructure, services, and security features.
• Hands-on experience securing cloud-native applications, containerization (eg. Kubernetes), and serverless environments.
• Experience with identity and access management (IAM) and network security in GCP.
• Proficient with cloud security automation and scripting (e.g., Terraform, Python, Shell scripting).
• Well versed with change management planning, coordination and implementation following the established process to the organization

Education:

• Bachelor’s degree in computer science, Information Security, or a related field (or equivalent work experience).

Certifications:

• Google Cloud Professional Cloud Security Engineer (preferred).
• Additional certifications in cloud security (e.g., CISSP, CCSP, CompTIA Security ) are a plus.

Preferred Skills and Experience:

• Experience with GCP-based security solutions and services like Cloud Key Management, Cloud HSM, and Cloud Logging.
• Knowledge of container orchestration platforms (e.g., Kubernetes) and security bestpractices for containers in GCP.
• Experience with threat modeling, penetration testing, and vulnerability management in the cloud.
• Familiarity with DevSecOps practices and secure CI/CD pipeline development.

Key Attributes:

• Strong problem-solving and analytical skills.
• Excellent communication and collaboration abilities.
• Ability to work in a fast-paced, dynamic environment.
• Detail-oriented and committed to delivering high-quality security solutions.