GCP Security Engineer at Capgemini
Montréal, QC, Canada -
Full Time


Start Date

Immediate

Expiry Date

29 Apr, 25

Salary

0.0

Posted On

29 Jan, 25

Experience

3 year(s) or above

Remote Job

No

Telecommute

No

Sponsor Visa

No

Skills

It, Cloud Security, Loss Prevention, Security Tools, Analytical Skills, Disabilities, Cloud, Infrastructure, Languages, Technology, Strategy, Automation, Design, Information Security, Scripting

Industry

Information Technology/IT

Description

REQUIRED SKILLS

  • 3+ years of experience in information security with a focus on cloud security preferably in GCP.
  • Strong knowledge of GCP security services including IAM VPC Cloud Armor and Data Loss Prevention.
  • Proficiency in scripting and automation using languages such as Python Bash or Go.
  • Experience with container security (e.g. Kubernetes Docker) and CI/CD tools (e.g. Jenkins GitLab).
  • Familiarity with security tools and frameworks for vulnerability management logging and monitoring.
  • Strong analytical skills and a proactive approach to problem-solving.
  • Excellent communication and collaboration skills to work effectively with cross-functional teams.
  • Relevant certifications (e.g. Google Cloud Professional Cloud Security Engineer CISSP or other cloud security certifications) are a plus.
Responsibilities

RESPONSIBILITIES

  • Security Integration: Embed security practices into the CI/CD pipeline ensuring that security is a core component of the software development lifecycle.
  • Vulnerability Management: Conduct regular security assessments vulnerability scans and penetration testing on GCP resources to identify and mitigate security risks.
  • Infrastructure as Code (IaC): Develop and maintain secure IaC templates (e.g. Terraform Cloud Deployment Manager) to automate provisioning and configuration of GCP resources securely.
  • Monitoring and Logging: Implement security monitoring and logging solutions utilizing tools such as Google Cloud Security Command Center and Stackdriver to detect and respond to threats.
  • Incident Response: Collaborate with incident response teams to investigate and remediate security incidents in GCP environments.
  • Access Control: Manage and enforce identity and access management (IAM) policies ensuring least privilege access across GCP services.
  • Compliance Assurance: Assist in ensuring compliance with relevant security standards and frameworks (e.g. CIS NIST) within GCP.
  • Security Awareness: Provide training and support to development and operations teams on security best practices and secure coding techniques.
Loading...