GCP DevSecOps Engineer

Skills

- Proven experience as a GCP Engineer or in a similar role with a strong focus on security and compliance. - Hands-on experience with GCP IAM Prisma Cloud and Google CSPR. - Experience working collaboratively with Cloud Foundations teams to implement secure cloud solutions. Technical Skills: - Proficiency in GCP services and tools including IAM Compute Engine Cloud Storage and Kubernetes Engine. - Strong understanding of cloud security principles threat detection and incident response. - Familiarity with infrastructure as code (IaC) tools such as Terraform or Deployment Manager. - Experience with scripting languages (e.g. Python Bash) for automation purposes. Join our team and play a crucial role in maintaining and enhancing the security and compliance of our GCP environment. If you meet the qualifications listed above and are passionate about cloud security we encourage you to apply today!

Description

We are seeking a skilled and proactive GCP Engineer to join our team. The ideal candidate will have a strong background in addressing GCP IAM exceptions, fixing Prisma Cloud alerts, Google CSPR remediations, and collaborating with Cloud Foundations teams. This role demands a comprehensive understanding of GCP security and compliance frameworks, and the ability to implement and maintain robust cloud security measures.

Responsibilities

• GCP IAM Management: Identify and address GCP Identity and Access Management (IAM) exceptions to ensure secure and compliant access to cloud resources.
• Prisma Cloud Alert Remediation: Monitor and resolve security alerts generated by Prisma Cloud, implementing necessary remediations to mitigate risks.
• Google CSPR Remediations: Perform Google Cloud Security Posture Review (CSPR) remediations, ensuring adherence to security policies and best practices.
• Collaboration with Cloud Foundations Teams: Work closely with Cloud Foundations teams to design, implement, and maintain secure cloud infrastructure and services.
• Security Monitoring and Incident Response: Continuously monitor the GCP environment for security threats, and respond to incidents promptly to minimize impact.
• Automation and Scripting: Develop and implement automation scripts and tools to streamline security operations and improve efficiency.
• Documentation and Reporting: Maintain comprehensive documentation of security processes, incidents, and remediation actions. Provide regular reports on security posture and compliance status.
• Best Practices Implementation: Stay current with the latest GCP services, security trends, and best practices to continuously enhance the organization's cloud security posture.
• Support and Training: Provide support and training to internal teams on GCP security tools and practices, promoting a culture of security awareness.