DevSecOps Engineer

Cloud Security Engineer

This position is 100% remote. Candidates must be eligible to obtain a US Secret Clearance. Candidates need to live in either the Eastern or Central Time Zone. This role will be focused on implementing DevSecOps practices and working closely with our engineering team to secure our cloud environment. Your expertise in cloud security, infrastructure-as-code, and GRC oversight will be crucial in ensuring compliance, security, and operational integrity across our systems. Candidates that apply must have strong GCP and Terraform hands on experience.

Key Responsibilities:

• Implement security controls and best practices in the GCP Cloud environment
• Establish GCP cloud governance frameworks
• Work with the engineering team and architects to ensure secure cloud architecture design and deployment
• Lead the preparation for third-party security assessments, specifically targeting compliance with industry security frameworks like NIST
• Provide hands-on expertise in implementing security solutions and integrating them throughout the development lifecycle
• Develop, enhance, and maintain infrastructure-as-code setups using Terraform, ensuring efficient and secure deployment processes
• Collaborate with the team to create Terraform modules and reusable components for consistent and scalable infrastructure management
• Conduct code reviews and provide guidance on Terraform best practices to ensure high-quality infrastructure code
• Contribute to the enhancement and maintenance of infrastructure-as-code setups using Terraform
• Support the team with security-related incidents and ensure continuous improvement of cloud security practices
• Utilize GCP tools such as Cloud Security Command Center, Cloud Armor, and Forseti Security to enhance security posture
• Implement and manage GCP Identity and Access Management (IAM) policies and roles
• Leverage GCP's VPC Service Controls to protect sensitive data

Ideal Candidate Qualifications:

• Experience in cloud security, with a focus on Google Cloud Platform (GCP) and exposure to Azure
• Hands-on experience with security controls (e.g., DNS obfuscation, cross-cloud interconnects)
• Familiarity with infrastructure-as-code tools like Terraform
• Experience with compliance frameworks such as NIST and hands-on involvement with third-party security assessments
• Ability to work closely with engineers, architects, and other stakeholders to implement secure cloud solutions
• Strong problem-solving skills and a proactive approach to security engineering tasks