US Citizen
Green Card
Corp-Corp
W2-Permanent
W2-Contract
Contract to Hire
Consulting/Contract
UG :- - Not Required
PG :- - Not Required
No of position :- ( 1 )
Post :- 23rd Mar 2024
We are seeking a highly skilled Security Subject Matter Expert (SME) with expertise in Google Cloud Platform (GCP) cybersecurity and infrastructure automation to join our cybersecurity team. As a Security SME, you will play a pivotal role in designing, implementing, and maintaining robust security measures within the GCP environment, while also leading the development of infrastructure automation solutions using Terraform. You will collaborate closely with cross-functional teams to enforce security best practices, enable CI/CD pipelines, and automate provisioning and orchestration processes. The ideal candidate will have a strong background in GCP security, extensive experience with Terraform, and a deep understanding of infrastructure configuration management and automation.
Key responsibilities:
• Lead the design and implementation of security controls and policies within the GCP environment, leveraging Terraform for infrastructure provisioning and configuration management.
• Develop new or enhance existing Terraform templates to automate the deployment of GCP resources, ensuring adherence to security best practices and regulatory requirements.
• Collaborate with security teams to integrate Terraform with various security tools and APIs, enabling seamless automation and orchestration of security processes such as vulnerability scanning, policy enforcement, and incident response.
• Enforce security best practices throughout the CI/CD pipeline, integrating security checks and validations into automated build, test, and deployment processes.
• Work closely with DevOps and engineering teams to enable infrastructure as code (IaC) practices, facilitating versioning, code review, and collaboration on infrastructure changes.
• Implement automated provisioning and orchestration workflows using Terraform and other tools to streamline the deployment and management of GCP resources and services.
• Collaborate with cross-functional teams to define infrastructure requirements, design scalable and resilient architectures, and optimize resource utilization within the GCP environment.
• Monitor and maintain the security posture of GCP environments, conducting periodic audits, assessments, and reviews to identify vulnerabilities and ensure compliance with security standards.
• Provide expert guidance and support to internal teams on security-related topics, including secure coding practices, network segmentation, encryption, and access controls.
• Stay abreast of emerging trends and technologies in GCP, Terraform, and cybersecurity, and drive the adoption of new tools and methodologies to enhance security and automation capabilities.
• Understand the GCP security services licensing model and various native security services offered by GCP
• Design and implement secure cloud architectures on Google Cloud Platform (GCP) using security best practices, native security controls and industry standards.
• Conduct security assessments and audits of GCP environments to identify vulnerabilities and recommend remediation strategies.
• Configure and manage Google Cloud security products and services like Cloud Identity & Access Management (IAM), Cloud Key Management Service (KMS), and Cloud Security Command Center (SCC).
• Develop and implement security policies and procedures for GCP deployments.
• Collaborate with engineers and developers to integrate security considerations into the software development lifecycle (SDLC).
• Stay up-to-date on the latest security threats and vulnerabilities related to GCP and cloud security in general.
• Provide technical guidance and support to other teams on security best practices for GCP.
• Proactively identify and plan the risk mitigation strategy within GCP environments
Required Skills:
• Bachelor's degree or higher in Computer Science, Information Security, or a related field.
• Minimum of 10 years of experience in cybersecurity and infrastructure automation, with at least 5 years of specialized experience in Google Cloud Platform (GCP) security.
• Extensive hands-on experience with Terraform, including the development of Terraform modules, templates, and configurations for provisioning and managing infrastructure resources in GCP.
• Strong understanding of GCP services and technologies, including Compute Engine, Kubernetes Engine, Cloud Storage, Cloud IAM, and Cloud Security Command Center.
• Solid understanding of security best practices, standards, and frameworks, such as NIST, CIS, ISO 27001, and SOC 2.
• Experience integrating Terraform with security tools and APIs, such as vulnerability scanners, SIEM solutions, and identity providers, to automate security processes.
• Proficiency in scripting languages such as Python or Bash for automation and orchestration tasks.
• Experience implementing CI/CD pipelines and infrastructure as code (IaC) practices using tools such as Jenkins, GitLab, or CircleCI.
• Strong analytical and problem-solving skills, with the ability to troubleshoot complex security and automation issues in GCP environments.
• Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams and stakeholders.
Good to have skills:
• Experience with Infrastructure as Code (IaC) tools like Terraform
• Experience with security automation and orchestration tools
• Experience with cloud compliance frameworks
• Familiarity with Google Cloud Security Command Center (SCC)
• Certifications like CISSP, CISA, or CCSP (a plus)