About the project

• We are looking for a Cloud Security Program Manager to lead complex security transformation initiatives across cloud-native environments, with a strong focus on Google Cloud Platform (GCP). This high-impact role is central to embedding security into cloud architectures and CI/CD pipelines, particularly within regulated sectors.
• You will drive strategic security programs that align enterprise goals with best-in-class practices in cloud governance, infrastructure security, and DevSecOps. You will work with multidisciplinary teams and senior stakeholders to shape secure-by-design solutions and improve security posture across the organization.

Your responsibilities

• Lead the design and execution of large-scale SecOps and DevSecOps transformation programs in cloud environments
• Define and implement security strategies aligned with GCP architecture and public sector compliance standards
• Integrate security controls into CI/CD workflows and DevOps practices
• Deploy and optimize GCP-native security tools such as IAM, VPC Service Controls, Cloud Armor, KMS, and Security Command Center
• Collaborate with cross-functional teams to drive secure infrastructure and application design
• Use Infrastructure as Code (Terraform) to enforce security and configuration consistency
• Establish automated compliance monitoring, threat detection, and vulnerability management
• Support incident response and forensic investigations in GCP-based systems
• Align programs with frameworks such as NIST, MITRE ATT&CK, and OWASP Top 10
• Promote container and service mesh security best practices (e.g., GKE, Istio)
• Champion SIEM/SOAR adoption (e.g., Chronicle, Splunk, Sentinel) and security scorecards

Our requirements

• 5+ years of experience in cloud security engineering, with hands-on GCP expertise
• Strong knowledge of DevSecOps practices and secure CI/CD integration
• Experience with GCP security services: IAM, VPC-SC, Cloud Armor, KMS, SCC
• Practical scripting skills (Python, Bash, Go) for automation and security tooling
• Familiarity with IaC tools (Terraform)
• Deep understanding of network security in cloud environments (firewalls, VPN, DNS, load balancing)
• Knowledge of security standards: NIST, MITRE ATT&CK, OWASP Top 10
• Proven track record leading security programs in complex or regulated settings
• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
• Certifications: PMP, PgMP, TOGAF, or similar, plus security-focused credentials

Optional

• Google Cloud Professional Cloud Security Engineer certification
• Experience with SIEM/SOAR platforms (e.g., Chronicle, Splunk, Sentinel)
• Knowledge of container security and service mesh (GKE, Istio)
• Familiarity with threat detection using behavioral analytics or ML
• Background in compliance automation and security reporting
• Experience in regulated industries (e.g., public sector, finance, healthcare)

Technologies we use

This is how we work on a project

• Continuous Deployment

• Continuous Integration

• DevOps

What we offer

• Fully remote work with flexible working hours - EMEA Timezone

• Long-term collaboration on B2B contract

• Opportunity to work on complex cloud projects for international clients

• Professional growth in a highly skilled and supportive team

• Collaborative and open working culture