Cloud Security Engineer

This is a fully remote position, open to applicants in India.

📋 Description

• Design and implement security measures across GCP environments

• Secure GKE clusters by utilizing RBAC, network policies, and workload identity

• Enforce least privilege access (IAM) and establish security boundaries

• Manage secrets effectively with GCP Secret Manager

• Strengthen Kubernetes workloads and cluster configurations

• Implement Pod Security Standards (PSS), Network Policies, and Admission Controllers (OPA/Gatekeeper)

• Monitor and address container vulnerabilities

• Configure and oversee Cloudflare WAF, DDoS protection, and rate limiting

• Establish Zero Trust Access (ZTNA) policies

• Secure APIs by leveraging Cloudflare security features

• Manage DNS security along with SSL/TLS configurations

• Implement security monitoring utilizing GCP Cloud Logging & Monitoring, and SIEM tools (e.g., Splunk, Datadog, Chronicle)

• Define alerting protocols and respond effectively to security incidents

• Conduct root cause analyses (RCA) and post-incident reviews

• Ensure adherence to standards such as ISO 27001, SOC2, and CIS Benchmarks

• Execute regular security audits and vulnerability assessments

• Automate compliance verification using policy-as-code tools

⛳️ Requirements

• Solid hands-on experience with Google Cloud Platform (GCP): IAM, VPC, Cloud Armor, Cloud Logging, Security Command Center

• Comprehensive understanding of Kubernetes (GKE): RBAC, Network Policies, Ingress/Egress control, and Service Mesh (Istio) security concepts (mTLS, policies)

• Experience with Cloudflare services including WAF, Zero Trust, Access, DNS, and CDN security

• Proficiency in at least one programming language: Python / Go / Bash

• Experience with Terraform and Helm

🏝️ Benefits

• EEO Statement: The company is an Equal Opportunity Employer. As an employer subject to affirmative action regulations, we invite you to voluntarily provide the following demographic information. This information is used solely for compliance with government record-keeping, reporting, and other legal requirements. Providing this information is voluntary and refusal to do so will not affect your application status. This data will be kept separate from your application and will not be used in the hiring decision.