Job Description
Role - Cloud Security Engineer GCP
Experience Required - 7+ Years
Must Have Technical/Functional Skills
• Hands-on experience performing security assessments of GCP environments.
• Strong practical knowledge of core GCP services, including IAM, VPC, Compute Engine, Cloud Storage, Cloud SQL, GKE, Cloud KMS, Cloud Logging, and Security Command Center
• Experience working with GitHub repositories, including reviewing code and configuration files (e.g., JSON) for security, policy, or infrastructure validation purposes
• Experience evaluating GCP architectures for secure identity design, privilege access, network segmentation, and encryption strategies
• Understanding of GCP’s shared responsibility model and organization policy framework
• Familiarity with GCP-native security tooling (e.g., Security Command Center, Event Threat Detection, Cloud Asset Inventory, Forseti or similar governance tools)
• Experience mapping GCP implementations to recognized control frameworks (e.g., NIST, ISO 27001, CIS GCP Foundations, CSA CCM)
• Ability to review Infrastructure-as-Code (Terraform, Deployment Manager) for security risks and policy compliance
• Strong documentation and communication skills for technical and governance audiences
Roles & Responsibilities
The Cloud Security Engineer performs comprehensive security reviews of Google Cloud Platform (GCP) services and architectures to ensure alignment with enterprise security standards, regulatory requirements, and risk management practices.
This role evaluates GCP-based solutions across infrastructure, platform, and application layers, providing actionable security guidance to promote secure-by-design adoption and support governance and certification processes.
In addition, the role provides engineering support for GCP platform cybersecurity capabilities, including implementation of security controls, integration of native services, and enablement of cloud service certification and authorization processes.
The position enhances consistency, scalability, and quality of GCP security assessments across the organization.
Key responsibilities:
Cloud Security Review and Assessment
Security Standards and Control Alignment
GCP Platform Cybersecurity Engineering
Platform Integration and Collaboration
Generic Managerial Skills, If any
• Experience validating GitHub Schema definitions (e.g., JSON Schema) to enforce configuration standards, security guardrails, or policy compliance
• Familiarity with policy-as-code or automated compliance tools (e.g., Config Validator, OPA/Gatekeeper)
• Experience reviewing containerized and serverless architectures in GCP (GKE, Cloud Run, Cloud Functions)
• Google Professional Cloud Security Engineer certification
• Experience working with Cortex (e.g., Backstage Cortex, Prisma or similar internal developer portals) for service cataloging, security metadata management, or certification/governance workflows
• Experience with cloud security posture management (CSPM) platforms