Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Develop and maintain security policies for GCP infrastructure and applications.
- Company: Join a forward-thinking company focused on cloud security and innovation.
- Benefits: Enjoy flexible work options, competitive pay, and opportunities for professional growth.
- Why this job: Be at the forefront of cloud security, making a real impact in a collaborative environment.
- Qualifications: Bachelor's degree or equivalent experience in Computer Science or Information Security required.
- Other info: Relevant GCP certifications are a plus; stay updated with the latest industry trends.
The predicted salary is between 43200 - 72000 £ per year.
Responsibilities:
- Develop, implement, and maintain Rego policies to enforce security controls and compliance standards within our GCP infrastructure and applications.
- Collaborate with development and operations teams to integrate security into the GCP-focused CI/CD pipeline, ensuring security checks and scans are automated and seamlessly incorporated.
- Leverage your GCP expertise to architect and implement secure microservices and containerized applications, ensuring compliance with GCP security best practices.
- Design and implement infrastructure-as-code (IaC) using Terraform to define and manage GCP resources securely and efficiently.
- Perform thorough security assessments on GCP environments, utilizing GCP-specific security tools and technologies, to identify and address potential vulnerabilities.
- Conduct threat modeling and risk assessments for GCP deployments, designing effective security solutions tailored to GCP services.
- Collaborate with cross-functional teams to respond to GCP-specific security incidents promptly, conduct root cause analysis, and implement corrective actions.
- Stay current with GCP advancements, industry security trends, and best practices, sharing knowledge and insights with team members.
- Drive a culture of security awareness specific to GCP environments, ensuring security considerations are integrated throughout development.
Requirements:
- Bachelor\’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
- Proven experience as a DevSecOps Engineer with a strong focus on GCP
- Expertise in Rego policies and policy-as-code practices especially with implementation in GCP
- In-depth understanding of GCP services, security controls, and best practices.
- Proficiency in using GCP-specific security tools, vulnerability scanners, and penetration testing tools.
- Strong experience with infrastructure-as-code (IaC) using Terraform for GCP resource provisioning and management.
- Familiarity with CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI/CD) with GCP integrations.
- Solid knowledge of GCP security frameworks, standards, and compliance requirements.
- Strong understanding of container security in GCP and experience securing microservices.
- Excellent communication and collaboration skills, with a proven ability to work effectively in cross-functional teams.
- Relevant GCP certifications such as Google Professional DevOps Engineer, Google Professional Cloud Security Engineer, or similar certifications are highly advantageous.
GCP DevSecOps Engineer employer: Photon
Contact Detail:
Photon Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land GCP DevSecOps Engineer
✨Tip Number 1
Make sure to showcase your hands-on experience with GCP and DevSecOps practices during networking opportunities. Attend relevant meetups or webinars where you can connect with professionals in the field and discuss your expertise.
✨Tip Number 2
Engage in online communities focused on GCP and DevSecOps, such as forums or social media groups. Sharing your knowledge and asking questions can help you build connections that may lead to job opportunities.
✨Tip Number 3
Consider contributing to open-source projects related to GCP security or DevSecOps. This not only enhances your skills but also demonstrates your commitment to the field and can catch the attention of potential employers.
✨Tip Number 4
Stay updated on the latest GCP security trends and best practices by following industry blogs and attending conferences. Being knowledgeable about current developments will help you stand out during interviews.
We think you need these skills to ace GCP DevSecOps Engineer
Some tips for your application 🫡
Highlight Relevant Experience: Make sure to emphasize your experience as a DevSecOps Engineer, particularly your work with GCP. Detail specific projects where you developed and implemented Rego policies or integrated security into CI/CD pipelines.
Showcase Technical Skills: Clearly outline your technical skills related to GCP, Terraform, and security tools. Mention any relevant certifications you hold, such as Google Professional DevOps Engineer or Google Professional Cloud Security Engineer, to strengthen your application.
Demonstrate Collaboration: Since the role involves working with cross-functional teams, provide examples of how you've successfully collaborated with development and operations teams in the past. Highlight your communication skills and ability to drive a culture of security awareness.
Tailor Your Application: Customize your CV and cover letter to align with the job description. Use keywords from the job posting, such as 'infrastructure-as-code', 'security assessments', and 'container security', to ensure your application stands out.
How to prepare for a job interview at Photon
✨Showcase Your GCP Expertise
Be prepared to discuss your experience with GCP services and security controls in detail. Highlight specific projects where you implemented Rego policies or secured microservices, as this will demonstrate your hands-on knowledge.
✨Demonstrate Infrastructure-as-Code Skills
Since Terraform is crucial for this role, be ready to explain how you've used it to manage GCP resources. Share examples of IaC implementations that improved security and efficiency in your previous projects.
✨Discuss CI/CD Integration
Talk about your experience integrating security into CI/CD pipelines. Provide examples of how you automated security checks and scans, and the tools you used, such as Jenkins or GitLab CI/CD.
✨Stay Updated on Security Trends
Show your commitment to continuous learning by discussing recent advancements in GCP security and industry trends. Mention any relevant certifications you hold and how they have helped you stay informed.
