Key Responsibilities
- Design, implement, and improve cloud security controls across Google Cloud Platform (GCP) environments.
- Work with engineering, DevOps, and platform teams to build secure-by-design systems for software products and commercial platforms.
Define and enforce cloud security best practices around:
- IAM
- Network Security
- Workload Protection
- Secrets Management
- Logging and Monitoring
- Data Protection
- Review cloud architecture and recommend security improvements for new and existing systems.
- Support security for CI/CD pipelines, infrastructure as code, containerized workloads, and application hosting environments.
- Help develop and maintain security baselines, standards, and hardening guides for cloud environments.
- Participate in incident response activities, including investigation, containment, root cause analysis, and follow-up remediation.
- Work with internal teams to improve detection and response capabilities for cloud and hybrid environments.
- Support vulnerability management, risk assessment, and remediation tracking.
- Contribute to security governance, audit readiness, and compliance needs as the business expands its software offerings.
- Help create security awareness within engineering and product teams, with a focus on practical risk reduction.
- Required Experience:
- 8-11 Years of overall IT / Technology Experience.
- 4-5 years of direct cybersecurity experience.
- Strong hands-on experience in cloud security.
- Good working knowledge of Google Cloud Platform (GCP) security services and architecture.
Experience with at least some of the following:
- Cloud IAM and access controls
- Security monitoring and logging
- Network security
- Vulnerability management
- Incident response
- Secure infrastructure design
- Experience working with engineering or DevOps teams in product, platform, or software environments
- Understanding of common security frameworks, standards, and best practices
- Deal Breaker Skill
- Google Cloud Functions
