Cloud Security Enginner/Architect (GCP)

Role Summary

Embed security and compliance guardrails into the GCP rollout so onboarding is secure-by-default and audit-ready.

Key Responsibilities

• Translate control requirements into technical guardrails (Org Policies, baselines)
• Define encryption/key management patterns and secrets handling expectations
• Set logging/monitoring requirements and evidence retention standards
• Drive exception handling, risk acceptance workflow inputs, and remediation tracking

Mandatory Skills/Experience

• Cloud security fundamentals; control mapping/evidence discipline
• GCP guardrails concepts (policy constraints, IAM hardening, logging requirements)
• Practical delivery mindset: implementable standards, not just documentation

Nice-to-have

• Threat modeling
• Vulnerability management integration
• Incident response practices

Success Measures

• Fewer control gaps
• Faster audit responses
• Fewer onboarding rework cycles