Live Jobs

Job Title: Cloud Security Engineer

We are seeking a highly skilled and experienced Security Engineer with a strong focus on traditional security practices to join our team. The ideal candidate will possess extensive knowledge of legacy security systems and a solid understanding of how to integrate those practices with modern cloud environments, specifically Google Cloud Platform (GCP). This role will primarily focus on maintaining and enhancing our existing security infrastructure while selectively applying GCP expertise to improve and modernize specific security functions.

Responsibilities:

• Assess, analyze, and mitigate security vulnerabilities and risks across our extensive legacy systems, with a focus on maintaining their stability and security posture.
• Design, implement, and manage security controls and solutions for our legacy systems, including firewalls, intrusion detection/prevention systems, and access control mechanisms.
• Develop and maintain security policies, standards, and procedures for legacy systems, ensuring compliance with industry best practices and regulatory requirements.
• Monitor and respond to security incidents related to legacy systems, including investigation, containment, and remediation efforts.
• Provide expert-level support and troubleshooting for legacy security infrastructure.
• Collaborate with cross-functional teams to ensure secure integration of new technologies with existing legacy systems.
• Evaluate and recommend security enhancements for legacy systems to address evolving threats.
• Apply knowledge of GCP to specific security projects, including:
  • Integrating legacy security logs with GCP's security monitoring tools (e.g., Security Command Center).
  • Utilizing GCP services to enhance specific security functions, such as threat detection or vulnerability scanning, where appropriate.
  • Assisting with the secure migration of select security workloads to GCP.
• Provide security guidance and training to engineering teams on legacy security best practices and basic GCP security principles.

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 8-9 years of experience in a Security Engineering role with a primary focus on security principles, practices, and technologies.
• Extensive and deep understanding of core security concepts: network security, operating system security, vulnerability management, incident response, cryptography, and security frameworks.
• Proven expertise in securing legacy systems and technologies: traditional firewalls, intrusion detection/prevention systems, legacy operating systems, security appliances, and other non-cloud-native security solutions.
• Solid understanding of networking concepts, including TCP/IP, routing, and switching.
• Familiarity with compliance standards and frameworks (NIST, ISO 27001, etc.).
• Excellent analytical, problem-solving, and troubleshooting skills, specifically in the context of complex legacy environments.
• Strong communication and collaboration skills.
• 3+ years of hands-on experience working with Google Cloud Platform (GCP), with a focus on security best practices.
• Google Cloud Professional Cloud Security Engineer certification.

• Other relevant security certifications (e.g., CISSP, CISM).
• Experience with scripting and automation (e.g., Python, Bash).
• Knowledge of cloud security best practices, including the shared responsibility model.
• Experience with DevSecOps practices.
• Knowledge of container security (Docker, Kubernetes).
• Experience with migrating or integrating legacy systems with GCP.