Multi-cloud Security Engineer

Multi-cloud Security Engineer-GCP
Overview Of The Team The Cloud Security team is responsible for securely enabling the use of cloud technologies to support the firm's desire to leverage cloud-native services at enterprise scale The Cloud Security team designs the security requirements that must be adhered to in the cloud, as well as builds the tooling and automation needed to provide enterprise capabilities to protect the firm and make securing workloads easier for application teams The team works with multiple cloud providers and is currently looking for an experienced multi-cloud Security Engineer with a focus on Google Cloud Platform familiar with multiple cloud concepts, cloud services, and programming languages The team this engineer will join implements security controls into our cloud platforms (detective, preventative, and corrective) and owns platforms used to further secure our cloud footprint This team also works to enable the Security Operations teams to extend their enterprise security functions to the cloud environments, Primary Responsibilities Developing, testing, and deploying Public Cloud Controls across the firms, Providing security recommendations and solutions for migrating and new applications in the Customer environment to Azure, AWS, with a focus on GCP platforms, Serve as a subject matter expert for security tools, DevOps practices across all major Cloud Providers, Implement and manage GCP security controls, Working closely with vendors and partner squads to develop, deploy, and test Cloud security services, Respond to Cloud security drifts in a timely manner and work with the stakeholders to remediate the drifts, integrating, configuring, documenting, and deploying compliant infrastructure and supporting services in the Cloud platform, Troubleshooting problems, analyzing root cause, and (where possible) fixing bugs introduced by owned or managed security solutions, Collaborate with Risk Management, Security Architecture, and Cyber Incident Response teams to ensure necessary controls for Cloud services are deployed and tested Work in a globally distributed team to provide innovative and robust Cloud-centric solutions, Required Skills 5+ years of experience in software and/or cloud platform engineering, particularly focused on GCP environment, Knowledge of the Shared Responsibility Model; keen understanding of the security risks inherent in hosting cloud-based applications and data, Experience developing across the security assurance lifecycle (including prevent, detect, respond, and remediate controls)Experience in configuring Public Cloud native security tooling and capabilities with a focus on Google Cloud Organizational policies/constraints, VPC SC, IAM policies and GCP APIs, Experience with Cloud Security Posture Management (CSPM) 3rd Party tools such as Wiz, Prisma, Check Point CloudGuard, etc Experience in Policy-as-code (Rego) and OPA platform, Experience solutioning and configuring event-driven serverless-based security controls in Azure, including but not limited to technologies such as Azure Function, Automation Runbook, AWS Lambda and Google Cloud Functions, Deep understanding of DevOps processes and workflows, Working knowledge of the Secure SDLC process Experience with Infrastructure as Code (IaC) tooling, preferably Terraform, Familiarity with Logging and data pipeline concepts and architectures in cloud, Strong in scripting languages such as PowerShell or Python or Bash or Go, Knowledge of Agile best practices and methodologies Experience creating technical architecture documentationExcellent communication, written and interpersonal skills, Practical experience in designing and configuring CICD pipelines Practical experience in GitHub Actions and Jenkins, Experience in ITSM, Ability to articulate complex technical concepts to non-technical stakeholders, Experience with risk control frameworks and engagements with risk and regulatory functions Experience in the financial industry would be a plus,