Security Architect Google Cloud Platform; VP

Security Architect – Google Cloud Platform

As a Security Architect specializing in Google Cloud Platform, you will be pivotal in designing, implementing, and managing secure cloud environments. You will ensure that security policies are effectively integrated into GCP infrastructure and align with industry standards, addressing the needs for scalability, flexibility, and robust protection of data and applications. This role will focus on architecting and implementing security controls that protect data, ensure compliance and provide robust defenses against threats throughout the environment within Google Cloud Platform.

• Develop and implement a comprehensive cloud security strategy that aligns with business goals and compliance standards (GDPR, SOC 2, HIPAA).
• Design security infrastructure architectures and frameworks to protect sensitive data and mitigate risks across networks, storage, applications, and authentication services using automation across a hybrid cloud architecture.
• Design and enforce encryption for data at rest and in transit across all compute boundaries.
• Proactively monitor GCP environments for vulnerabilities, manage threat detection, and ensure prompt response to potential security incidents.
• Work closely with engineering, development, SRE, and operations teams to enforce security policies and integrate best practices into the development lifecycle.
• Guide the security team, promote security awareness, and ensure compliance with industry standards (ISO 27001, NIST).

• Extensive experience in cloud security architecture with a focus on Virtual Desktop Infrastructure (VDI) on GCP; experience with AWS or Azure is beneficial.
• In-depth understanding of CSP core infrastructure services, security services, encryption practices, compliance frameworks, IAM, RBAC, Cloud Identity, and Zero Trust principles for secure access.
• Expertise in networking, including VPC subnets, firewall configurations, and Cloud VPC peering.
• Experience with scripting and configuration management tools (Bash, Python, Ansible, Puppet, Chef).
• Strong analytical skills to assess security risks and design effective solutions.
• Proficiency in Git version control.
• Excellent communication skills to convey technical information to stakeholders with limited technical background.

• Bachelor’s degree in Computer Science, Information Technology, or related field.
• Master’s degree preferred.
• Security certifications (CISSP, CCSK, Google Professional Cloud Security Engineer) are preferred.

Working at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you'll have the opportunity to grow your career, give back to your community, and make a real impact. We are committed to ensuring our workplace is welcoming for everyone.

• 27 days annual leave (plus bank holidays)
• A discretionary annual performance-related bonus
• Private medical care & life insurance
• Employee assistance program
• Pension plan
• Paid parental leave
• Special discounts for employees, family, and friends
• Access to a variety of learning and development resources