We are seeking a Cloud Security Engineer with strong expertise in DevSecOps and Google Cloud Platform (GCP). You will help design and implement secure-by-default practices across cloud environments, CI/CD pipelines, and Infrastructure as Code deployments. This role requires hands-on security engineering skills combined with strategic thinking to ensure security is embedded across the development lifecycle.
You will work in a flexible EMEA timezone, contributing to cloud security engineering initiatives that align with regulatory requirements and modern security standards.
responsibilities :
Design and implement secure architectures across GCP using native services such as IAM, VPC-SC, Cloud Armor, KMS, and Security Command Center
Embed security into CI/CD workflows using DevSecOps practices and tools
Build and maintain Infrastructure as Code using Terraform to enforce secure configurations
Develop automation scripts in Python, Bash, or Go to streamline security tooling and enforcement
Define and implement monitoring, logging, and alerting mechanisms for GCP environments
Ensure alignment with frameworks such as NIST, MITRE ATT&CK, and OWASP Top 10
Collaborate with development and operations teams to drive security awareness and secure-by-design principles
Contribute to incident response processes, including analysis and remediation support
requirements-expected :
5+ years of experience in cloud security engineering, ideally in GCP environments
Strong understanding of DevSecOps methodologies and CI/CD pipeline security integration