Job Title : GCP Security Engineer
Location : Remote
Position Type : Contract
US Citizen, Green Card, TN, GC EAD and H4 EAD only No Third-party agencies corp to corp.
Key Requirements:
The ideal candidate will have experience working as an Information Systems Security Engineer (ISSE) or Information System Security Officer (ISSO) for cloud deployments, along with a history of hands-on systems administration or engineering.
A willingness to quickly learn new business models by working directly with Application Teams across all of client.
Lead and assist in defining their cloud application security architecture
Experience with Security Command Center, Cloud KMS, Cloud Data Loss Protection, Identity and Access Management, Secrets Manager, Cloud Identity, Google Beyond Corp, Cloud Logs and HashiCorp Vault.
Strong knowledge of security topics such as Identity and Access Management, Security Operations, DevOps, and Ephemeral Deployments
Understanding of Threat Modelling using STRIDE, MITRE Telecommunication&CK, or other methodologies. Cloud penetration testing knowledge to work with teams on the strengths and weaknesses of cloud systems and overall security posture
Knowledgeable of Computer Security Alliance Cloud Control Matrix, NIST Cybersecurity Framework & Open Web Application Security Project (OWASP) principles
Knowledge in one or more of the following: Cloud adoption techniques and methodologies, Cloud Native Security, Cloud Security Posture Management (CSPM), Cloud Access Security Brokers (CASB), Serverless Architectures, Kubernetes, and container security.
The ability to act as the liaison from our Cloud Centre of Excellence to our Information Security, Application Teams, and Cloud Operations functions
Work with senior staff to perform security analysis and have the acumen to advise financial clients about cloud native best practices
At least 5+ years of experience with Security in Information Management. At least 3 years of experience with cloud security and 2 years of GCP experience
