Typical Day in Role:
• Support and define secure network strategies and architecture for GCP workloads – GCE and GCVE, developing associated standards and meeting compliance requirements like PCI.
• Collaborate with cloud infrastructure, DevOps and development teams to integrate security during the design and development phases
• Implement security controls and best practices for GCP and Azure cloud services
• Provide mentorship and training to other team members on cloud security principles
Candidate Requirements/Must Have Skills:
1. 10+ years’ experience in IT Security
2. 4+ years’ GCP experience (services and products) – with demonstrated experience in GCP Network Security OR Data Security (for the 2 different roles, please specify which they have/are strongest in)
3. 4+ years’ experience in security controls architecting and solutioning
4. 4+ years’ experience with documenting design architecture and security requirements
Nice-To-Have Skills:
1. Experience with deployment and managing IaaS, PaaS & SaaS solutions
2. GCVE experience
3. 4+ years’ experience in the financial industry
4. Knowledge of /exposure to infrastructure as code (IaC)
5. Knowledge of /exposure to CI/CD tools like Jenkins, Azure DevOps, GitLab CI/CD, CircleCI, BitBucket/GitHub, Jfrog Artifactory, Ansible, Confluence, Jira, Bamboo etc.
Soft Skills Required:
Strong analytical and problem-solving skills, with an ability to think strategically and tactically about complex cloud security issues.
Communication: excellent written and verbal communication and interpersonal skills
Fast learner with strong analytical skills and improvement mindset
Must be able to operate independently within tight time frames
High energy, demonstrated ability to work under pressure, deals well with ambiguities and uncertainties, and drives results.
Education:
Security certifications nice to have: CISSP (1st preference), Google Professional Cloud Security Engineer (2nd preference), CCSP, CCSK