GCP Security Engineer

Company description

At Publicis Sapient we enable our clients to Thrive in Next and to create business value through expert strategies, customer‑centric experience design, and world class product engineering. The future of business is disruptive; transformative; and becoming digital to the core.

Seeking an experienced Google Cloud Security Engineer to design, implement, and manage enterprise‑grade security solutions within Google Cloud Platform (GCP). The ideal candidate holds a GCP Professional Certification with deep expertise in GCP security services, enterprise security architecture, and hands‑on Terraform experience. This role requires building integrated cloud security solutions that align with organizational policies and compliance frameworks.

• Deploy comprehensive security solutions leveraging GCP’s native security offerings, including IAM, Cloud Armor, Security Command Center, Chronicle, Key Management, and VPC Service Controls.
• Lead the design and implementation of secure enterprise landing zones ensuring multi‑project, multi‑environment cloud deployments meet stringent security requirements.
• Collaborate with cloud engineers, Dev Ops, and security teams to embed security into automated CI/CD pipelines and infrastructure as code using Terraform.
• Experience with GCP foundation services, resource hierarchy, IAM, KMS, asset inventory, security, networking, observability, etc.
• Develop and enforce cloud security policies, guardrails, and identity/access controls to safeguard cloud workloads and data.
• Design and integrate threat detection, incident response, and compliance monitoring solutions tailored to cloud‑native environments.
• Conduct security assessments, risk analysis, and provide actionable remediation plans to mitigate vulnerabilities in cloud infrastructure.
• Provide subject matter expertise on cloud security best practices, regulatory requirements, and emerging threats across hybrid and multi‑cloud architectures.
• Mentor teams on secure cloud architecture principles and promote security‑first thinking across projects.
• Stay current with GCP security advancements and incorporate innovations to continuously strengthen the security posture.

• Google Cloud Professional Cloud Architect or Cloud Security Engineer certification.
• In‑depth knowledge of GCP security services and solutions including IAM, Cloud Armor, Security Command Center, Chronicle, KMS, DLP, and VPC Service Controls.
• Proven experience designing and implementing enterprise security solutions integrated into Google Cloud environments and landing zones.
• Hands‑on expertise managing cloud infrastructure automation using Terraform or equivalent IaC tools.
• Strong understanding of network security, identity and access management, encryption, threat detection, and compliance frameworks (e.g., GDPR, HIPAA, NIST).
• Experience working with hybrid connectivity, private service connect, and secure multi‑project architectures.
• Excellent communication skills with ability to translate complex security concepts to technical and non‑technical stakeholders.
• Knowledge of GCP logging, observability, SRE.
• Experience using Docker within container orchestration platforms such as EKS/GKE.

• Experience with Dev Sec Ops  practices, CI/CD security integration, and container security on GCP (GKE).
• Familiarity with other cloud environments (AWS, Azure) and multi‑cloud security design.
• Knowledge of security frameworks such as CIS, ISO 27001, and Cloud Security Alliance guidance.
• Experience conducting security incident response and vulnerability management for cloud systems.
• Hands‑on knowledge of Helm charts.
• Hands‑on experience deploying and managing Kubernetes infrastructure with Terraform Enterprise.
• Hands‑on Python and Unix shell scripting is required.
• Certified Kubernetes Administrator (CKA) and/or Certified Kubernetes Application Developer (CKAD) is a plus.

Pay Range: $93,000–$193,000

• Flexible vacation policy; time is not limited, allocated, or accrued
• 16 paid holidays throughout the year
• Generous parental leave and new parent transition program
• Tuition reimbursement
• Corporate gift matching program

As part of our dedication to an inclusive and diverse workforce, Publicis Sapient is committed to Equal Employment Opportunity without regard for race, color, national origin, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity, or religion. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at  or you may call us at +1‑617‑621‑0200.