GCP Security Engineer

About

We are hiring a hands-on GCP Security Engineer for a longterm contract engagement in Jersey City, NJ. This role is focused on building security and compliance guardrails into a Google Cloud Platform rollout so teams can onboard securely, consistently, and audit-ready.

This is not a pure GRC role, not a general cloud admin role, and not an AWS-only security role. We are looking for someone with real hands-on GCP, Terraform, Python, and cloud security implementation experience.

What You’ll Do

• Implement security and compliance guardrails across GCP environments
• Translate control requirements into technical cloud security standards
• Work with Terraform to automate secure cloud infrastructure patterns
• Support IAM hardening, policy constraints, logging, monitoring, and audit readiness
• Define encryption, decryption, key management, and secrets handling expectations
• Work with data protection requirements including data sensitivity, data categorization, and data classification
• Support remediation tracking, exception handling, and risk acceptance workflows
• Partner with cloud/platform/security teams to reduce onboarding rework and control gaps

Required Skills

• 5+ years of cloud/security engineering experience
• Hands-on Google Cloud Platform experience
• Terraform / Infrastructure as Code
• Python scripting or automation
• Cloud security implementation experience
• IAM hardening and access control experience
• Logging, monitoring, and audit evidence experience
• Strong communication skills and ability to explain real project work

Preferred / Nice to Have

• GCP Security Command Center
• Cloud KMS / encryption / decryption
• Secret Manager
• GCP Org Policies / policy constraints
• Data protection, data sensitivity, data categorization, or data classification
• DevSecOps experience
• Financial services experience
• Security compliance frameworks such as NIST, SOC 2, PCI, or ISO 27001