Gcp Developer

Location

Experience

This role is responsible for operating and improving the companys security systems, including hardware security modules (HSMs), public key infrastructure (PKI), and key management systems (KMS) in Google Cloud Platform (GCP). The professionals will use tools like Google Tink and Google Trust Services, ensuring they work smoothly with different programming languages and applications. The job includes automating setup tasks, building secure code pipelines, managing containers, and supporting deployments on Google Kubernetes Engine (GKE). The goal is to keep all cryptographic systems safe, well-maintained, and prepared for new technologies like post-quantum cryptography.

Key Responsibilities

• Operate, configure, and maintain CloudHSMs for Certificate Authority (CA) and Key Management (KMS) systems on GCP.
• Set up and support high-availability and failover processes for security systems across regions.
• Manage digital certificate issuance processes, including issuing, renewing, and revoking certificates.

• Use and maintain Google Tink cryptographic library with Node.js, Java, Go, and C++.

• Find and fix security issues in cryptographic code and tools.
• Test and prepare systems for post-quantum cryptography (PQC) standards.

• Automate deployment, monitoring, and management of crypto infrastructure using IaC, CI/CD pipelines, and containers.

• Deploy and manage encrypted workloads on Google Kubernetes Engine (GKE).

• Set up secure, role-based access and service account permissions for crypto resources.
• Work closely with the cloud security team to align operations, logging, and compliance with organizations security policies.

Required Skills

• 4+ years of hands-on experience in

  encryption/cryptography

  roles.

• Certification on GCP (preferred)

• Experience working with GCP for development of cryptographic modules interacting with

  Google CloudHSM and Cloud KMS

• Experience running and managing security hardware (HSMs) for Certificates (CA) and Key Management (KMS), with strong knowledge of making systems work across different regions and keeping them available during failures
• Direct work with the Google Tink library, including using it with

  Node.js, Java, Go, and C++

  languages, and skills in finding and fixing security issues
• Understanding of new encryption methods for the future, such as post-quantum cryptography (PQC)
• Hands-on experience using

  Google Trust Services

  (Public CA) for digital certificates
• DevOps skills for building and managing security systems using code, secure pipelines for software, and working with containers
• Experience setting up and supporting encryption services on Google Kubernetes Engine (GKE)
• Experience with GCP security configurations including identity and access management roles and policies
• Experience with secure services or tools to automate checks and monitoring to meet compliance needs