About the project

• We are seeking a Cloud Security Engineer with strong expertise in DevSecOps and Google Cloud Platform (GCP). You will help design and implement secure-by-default practices across cloud environments, CI/CD pipelines, and Infrastructure as Code deployments. This role requires hands-on security engineering skills combined with strategic thinking to ensure security is embedded across the development lifecycle.
• You will work in a flexible EMEA timezone, contributing to cloud security engineering initiatives that align with regulatory requirements and modern security standards.

Your responsibilities

• Design and implement secure architectures across GCP using native services such as IAM, VPC-SC, Cloud Armor, KMS, and Security Command Center
• Embed security into CI/CD workflows using DevSecOps practices and tools
• Build and maintain Infrastructure as Code using Terraform to enforce secure configurations
• Develop automation scripts in Python, Bash, or Go to streamline security tooling and enforcement
• Define and implement monitoring, logging, and alerting mechanisms for GCP environments
• Ensure alignment with frameworks such as NIST, MITRE ATT&CK, and OWASP Top 10
• Collaborate with development and operations teams to drive security awareness and secure-by-design principles
• Contribute to incident response processes, including analysis and remediation support

Our requirements

• 5+ years of experience in cloud security engineering, ideally in GCP environments
• Strong understanding of DevSecOps methodologies and CI/CD pipeline security integration
• Hands-on experience with GCP security services: IAM, VPC-SC, Cloud Armor, KMS, SCC
• Proficiency in scripting (Python, Bash, Go) for automation and custom security tools
• Familiarity with Infrastructure as Code tools (Terraform)
• Strong knowledge of network security concepts in cloud environments (VPNs, DNS, firewalls, load balancing)
• Solid understanding of cloud security monitoring, logging, and alerting practices
• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
• Certification: Google Cloud PCSE or equivalent

Optional

• Experience with SIEM/SOAR platforms (Chronicle, Splunk, Sentinel)
• Background in container and service mesh security (GKE, Istio)
• Familiarity with threat detection techniques including ML and behavioral analytics
• Knowledge of compliance automation and cloud security scorecards
• Experience working in regulated industries (e.g., public sector, finance, healthcare)
• Exposure to incident response and forensic practices in cloud-native environments

Technologies we use

This is how we work on a project

• Continuous Deployment

• Continuous Integration

• DevOps

What we offer

• Fully remote work with flexible working hours - EMEA Timezone

• Long-term collaboration on B2B contract

• Opportunity to work on complex cloud projects for international clients

• Professional growth in a highly skilled and supportive team

• Collaborative and open working culture