GCP Cybersecurity Consultant

Looking for 10 Years of GCP Cybersecurity consultant.
Lead the design and implementation of security controls and policies within the GCP environment leveraging Terraform for infrastructure provisioning and configuration management.
Develop new or enhance existing Terraform templates to automate the deployment of GCP resources ensuring adherence to security best practices and regulatory requirements.
Collaborate with security teams to integrate Terraform with various security tools and APIs enabling seamless automation and orchestration of security processes such as vulnerability scanning policy enforcement and incident response.
Enforce security best practices throughout the CI/CD pipeline integrating security checks and validations into automated build test and deployment processes.
Work closely with DevOps and engineering teams to enable infrastructure as code (IaC) practices facilitating versioning code review and collaboration on infrastructure changes.
Implement automated provisioning and orchestration workflows using Terraform and other tools to streamline the deployment and management of GCP resources and services.
Collaborate with crossfunctional teams to define infrastructure requirements design scalable and resilient architectures and optimize resource utilization within the GCP environment.
Monitor and maintain the security posture of GCP environments conducting periodic audits assessments and reviews to identify vulnerabilities and ensure compliance with security standards.
Provide expert guidance and support to internal teams on securityrelated topics including secure coding practices network segmentation encryption and access controls.
Stay abreast of emerging trends and technologies in GCP Terraform and cybersecurity and drive the adoption of new tools and methodologies to enhance security and automation capabilities.
Understand the GCP security services licensing model and various native security services offered by GCP.
Design and implement secure cloud architectures on Google Cloud Platform (GCP) using security best practices native security controls and industry standards.
Conduct security assessments and audits of GCP environments to identify vulnerabilities and recommend remediation strategies.
Configure and manage Google Cloud security products and services like Cloud Identity & Access Management (IAM) Cloud Key Management Service (KMS) and Cloud Security Command Center (SCC).
Develop and implement security policies and procedures for GCP deployments.
Collaborate with engineers and developers to integrate security considerations into the software development lifecycle (SDLC).
Stay uptodate on the latest security threats and vulnerabilities related to GCP and cloud security in general.
Provide technical guidance and support to other teams on security best practices for GCP.
Proactively identify and plan the risk mitigation strategy within GCP environments.

Required Skills:

Bachelors degree or higher in Computer Science Information Security or a related field.
Minimum of 10 years of experience in cybersecurity and infrastructure automation with at least 5 years of specialized experience in Google Cloud Platform (GCP) security.
Extensive handson experience with Terraform including the development of Terraform modules templates and configurations for provisioning and managing infrastructure resources in GCP.
Strong understanding of GCP services and technologies including Compute Engine Kubernetes Engine Cloud Storage Cloud IAM and Cloud Security Command Center.
Solid understanding of security best practices standards and frameworks such as NIST CIS ISO 27001 and SOC 2.
Experience integrating Terraform with security tools and APIs such as vulnerability scanners SIEM solutions and identity providers to automate security processes.
Proficiency in scripting languages such as Python or Bash for automation and orchestration tasks.
Experience implementing CI/CD pipelines and infrastructure as code (IaC) practices using tools such as Jenkins GitLab or CircleCI.
Strong analytical and problemsolving skills with the ability to troubleshoot complex security and automation issues in GCP environments.
Excellent communication and collaboration skills with the ability to work effectively with crossfunctional teams and stakeholders.

Good to have skills:
Experience with Infrastructure as Code (IaC) tools like Terraform
Experience with security automation and orchestration tools
Experience with cloud compliance frameworks
Familiarity with Google Cloud Security Command Center (SCC)
Certifications like CISSP CISA or CCSP (a plus)