Role :: Cloud Security Engineer GCP
Location :: Phoenix, AZ
Type :: Fulltime
Job Description
Experience Required - 7+ Years
Must Have Technical/Functional Skills
• Hands-on experience performing security assessments of GCP environments.
• Strong practical knowledge of core GCP services, including IAM, VPC, Compute Engine, Cloud Storage, Cloud SQL, GKE, Cloud KMS, Cloud Logging, and Security Command Center
• Experience working with GitHub repositories, including reviewing code and configuration files (e.g., JSON) for security, policy, or infrastructure validation purposes
• Experience evaluating GCP architectures for secure identity design, privilege access, network segmentation, and encryption strategies
• Understanding of GCP’s shared responsibility model and organization policy framework
• Familiarity with GCP-native security tooling (e.g., Security Command Center, Event Threat Detection, Cloud Asset Inventory, Forseti or similar governance tools)
• Experience mapping GCP implementations to recognized control frameworks (e.g., NIST, ISO 27001, CIS GCP Foundations, CSA CCM)
• Ability to review Infrastructure-as-Code (Terraform, Deployment Manager) for security risks and policy compliance
• Strong documentation and communication skills for technical and governance audiences
Roles & Responsibilities
- The Cloud Security Engineer performs comprehensive security reviews of Google Cloud Platform (GCP) services and architectures to ensure alignment with enterprise security standards, regulatory requirements, and risk management practices.
- This role evaluates GCP-based solutions across infrastructure, platform, and application layers, providing actionable security guidance to promote secure-by-design adoption and support governance and certification processes.
- In addition, the role provides engineering support for GCP platform cybersecurity capabilities, including implementation of security controls, integration of native services, and enablement of cloud service certification and authorization processes.
- The position enhances consistency, scalability, and quality of GCP security assessments across the organization.
Key responsibilities:
- Cloud Security Review and Assessment
- Security Standards and Control Alignment
- GCP Platform Cybersecurity Engineering
- Platform Integration and Collaboration
Generic Managerial Skills, If any
- Experience validating GitHub Schema definitions (e.g., JSON Schema) to enforce configuration standards, security guardrails, or policy compliance
- Familiarity with policy-as-code or automated compliance tools (e.g., Config Validator, OPA/Gatekeeper)
- Experience reviewing containerized and serverless architectures in GCP (GKE, Cloud Run, Cloud Functions)
- Google Professional Cloud Security Engineer certification
- Experience working with Cortex (e.g., Backstage Cortex, Prisma or similar internal developer portals) for service cataloging, security metadata management, or certification/governance workflows
- Experience with cloud security posture management (CSPM) platforms
