Google Cloud Security Manager

role: GOOGLE CLOUD Professionals – Remote – 5 Roles (Duration: 6‑12 months)

Join GOOGLE's Advisory Cloud Cyber Risk Services team to research, design, and implement cybersecurity solutions protecting clients’ sensitive information in Google Cloud Platform (GCP).

• Lead Cyber Risk teams on Cloud Transformation projects at industry‑leading clients using Google Cloud Platform services.
• Educate business and technology stakeholders on cloud value propositions and participate in deep architectural discussions.
• Capture and share leading‑practice knowledge within the technology community.
• Lead/Support implementation of Google Cloud environments and agile application development technologies in software development, integration, and testing of applications and infrastructure.
• Coordinate enhancements and deployments, providing insight & recommendations for Google Cloud security solutions (DLP API, Cloud Armor, CSCC, Google Key Management).
• Oversee architecting and design of complex cloud solutions for organizational business units.
• Serve as Google Cloud SME for senior business and technology stakeholders.
• Lead the Google Cloud Security Infrastructure Design and Architecture on client engagements.
• Conduct cloud security analysis of prospective clients’ Google Cloud platforms/environments based on GOOGLE's Cloud Cyber Risk Framework.
• Perform Cloud Security Assessments using industry‑standard frameworks (ISO, CSA‑CSM, NIST).
• Execute on Google Cloud security engagements across lifecycle phases – assess, design, implement.
• Implement industry‑leading practices around cyber risks and cloud security for clients.
• Design and develop Google Cloud‑specific security policies, standards, and procedures (firewall management, SSL/IPSec, SIEM, DLP, encryption, user account management, SSO, SAML, key management).
• Troubleshoot system‑level problems in a multi‑vendor, multi‑protocol network environment.
• Assist clients with transitions to Google Cloud from on‑premise environments.
• Document technical issues, analysis, client communication, and resolution.
• Provide internal technical training as needed.
• Develop whitepapers / PoVs and other technical materials.
• Support Managed Services team on client calls.
• Design, implement, manage, and automate Dev Ops/Dev Sec Ops  capabilities in cloud offerings using CI/CD toolsets.
• Ensure Dev Sec Ops  systems are robust, scalable, and limit exposure to vulnerabilities.
• Monitor and maintain multiple Dev Sec Ops  environments based on requirements.
• Demonstrate deep understanding of testing methodologies, test automation, and software development principles.
• Lead planning, estimation, and implementation of test automation frameworks and strategies.

GOOGLE Advisory's Cloud Cyber Risk team helps complex organizations pursue growth and innovation by proactively managing cyber risks. Professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills.

• 5+ years of IT and/or information security experience with 3+ years in an engineering role designing and supporting public clouds – preferably GCP.
• Deep experience with Google Cloud security services (Security Command Center, Cloud Armor, SSL Policies, Key Management, Event Threat Protection).
• Demonstrated capability to design, deploy, operationalize, and automate secure, highly scalable enterprise systems on Google Cloud.
• Experience designing the security solution for Google Kubernetes Engine.
• Experience with Chronicle, Looker, and Beyond Corp product offerings.
• Strong background in secure software development, data protection, cryptography, key management, IAM, network security (VPNs) within Google Cloud.
• Architected and deployed secure software‑defined and virtualized networks.
• Knowledge of regulatory and compliance requirements (FedRAMP, PCI‑DSS, NIST, HIPAA) and ability to translate them into implementable controls.
• Experience designing, implementing, and managing Dev Ops/Dev Sec Ops  capabilities using CI/CD toolsets and automation.
• Created and maintained security policies and procedures, managing protection of information systems and assets.
• Client interfacing, relationship building, and consulting skills.
• Travel up to 80% (travel may be suspended).
• BA/BS degree in Computer Science, Cyber Security, Information Security, Engineering, or related field.
• Must be legally authorized to work in the United States without employer sponsorship, now or in the future.

• Previous consulting or Big 4 experience.
• Ability to develop compelling proposals that articulate information security needs.
• Experience writing cloud automation scripts using JSON, Python, XML.
• Google Cloud Security or Google Cloud Professional certifications.

Primary skill areas: JAX, JAXB, Organization Development.