Job
Description
Role & responsibilities • Design, implement, and manage security solutions for cloud infrastructure, primarily on Google Cloud Platform (GCP), with additional responsibilities for Azure and AWS environments. • Develop and enforce security policies, procedures, and standards to ensure compliance with industry best practices and regulatory requirements. • Conduct security assessments, vulnerability scans, and penetration testing to identify and mitigate risks. • Monitor and respond to security incidents, providing timely and effective resolution. • Collaborate with cross-functional teams to integrate security into the development and deployment processes. • Stay up to date with the latest security trends, threats, and technologies to continuously improve our security posture. • Provide guidance and training to internal teams on cloud security best practices. • Implement and manage identity and access management (IAM) policies and procedures to ensure secure access to cloud resources. • Automate security processes and workflows using tools such as Terraform, Ansible, or similar. • Develop and maintain security documentation, including architecture diagrams, incident response plans, and standard operating procedures. • Perform regular audits and compliance checks to ensure adherence to security policies and regulatory requirements. • Collaborate with third-party vendors and service providers to evaluate and integrate security solutions. • Participate in security incident response drills and tabletop exercises to enhance preparedness and response capabilities. • Analyze and report on security metrics to measure the effectiveness of security controls and identify areas for improvement. Required Experience & skills Bachelors degree in computer science, Information Technology, or a related field. Proven experience as a Cloud Security Engineer or similar role, with a strong focus on Google Cloud Platform (GCP). Working knowledge of Azure and AWS cloud platforms. In-depth understanding of cloud security principles, practices, and technologies. Experience with security tools and technologies such as firewalls, intrusion detection/prevention systems, SIEM, and endpoint protection. Strong analytical and problem-solving skills. Excellent communication and collaboration abilities. Relevant certifications such as Google Professional Cloud Security Engineer, AWS Certified Security Specialty, or Microsoft Certified: Azure Security Engineer Associate are a plus.
