GCP Security Architect - Hybrid...

Job Description Role: – Design and implement secure cloud architectures and strategies on GCP. – Evaluate and recommend security tools, services and configurations to strengthen cloud security posture. – Ensure compliance with security standards and frameworks such as ISO 27001, NIST, CIS, GDPR and others. – Lead threat modeling, risk assessments, and security reviews for GCP infrastructure and applications. – Define and enforce Identity and Access Management (IAM) policies, including roles, permissions and service accounts. – Implement and maintain security monitoring, logging, and alerting tools (e.g., Cloud Logging, Cloud Monitoring, SCC). – Collaborate with DevOps, engineering, and compliance teams to embed security into the CI/CD pipelines. Skills: – Extensive experience in cloud security architecture, with at least 3 years on Google Cloud Platform. – Deep understanding of GCP services such as VPC, IAM, Cloud Armor, KMS, SCC, GKE and others. – Strong knowledge of security protocols, authentication, authorisation, encryption and network security. – Experience implementing Infrastructure as Code (IaC) with tools like Terraform or Deployment Manager. – Familiarity with DevSecOps practices and integrating security into DevOps pipelines. – Experience with security assessment tools and methodologies. – GCP Professional Cloud Security Engineer certification (preferred). – Strong communication and stakeholder engagement skills. – Experience with multi-cloud environments (AWS, Azure) preferred.