Cloud Security Architect - Google GCP
Cloud Security Architect - Google GCP
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
We are seeking a highly skilled and experienced Senior GCP Cloud Security Architect to join our expert team in Sydney. In this crucial role youll be at the forefront of designing implementing and optimizing comprehensive security solutions across complex Google Cloud landscapes. Youll champion security best practices enable secure digital transformations and empower our clients to confidently navigate and mitigate cloud risks.
Qualifications :
Security Architecture & Frameworks: Develop and maintain robust GCP security architectures guided by the Google Cloud Security Foundations Blueprint and the Well-Architected Frameworks Security pillar translating best practices into concrete design patterns and guardrails.
Secure Landing Zones & Resource Hierarchy: Design multi-project landing zones using Organization Folders and Projects managed via Infrastructure-as-Code (Terraform/Deployment Manager) embedding organizational policies IAM guardrails and VPC Service Controls to enforce policy from day one.
Identity & Access Management: Architect identity and access controls leveraging Cloud Identity (or Google Workspace) IAM roles & policies (including IAM Conditions) and organization policies to enforce least-privilege access across resources.
Network & Perimeter Security: Define network security designs involving VPCs subnets firewall rules Private Google Access Cloud Armor and VPC Service Controls to protect against external and lateral threats.
Data Protection & Encryption: Implement data protection strategies using Cloud KMS (CMEK/CSEK) Cloud HSM Cloud DLP and Confidential Computing (e.g. Confidential VMs) to secure data at rest and in transit.
Threat Detection & Monitoring: Integrate Security Command Center Event Threat Detection Cloud Audit Logs Cloud Logging & Monitoring and Chronicle SIEM to build automated detection alerting and incident response workflows.
DevSecOps Enablement: Embed security into CI/CD pipelines using Container Analysis Binary Authorization Security Scanning and Cloud Build integrationspromoting a shift-left security culture.
Compliance & Governance: Develop and enforce continuous-compliance frameworks using Security Command Center dashboards CIS Benchmarks and industry standards such as ISO 27001 PCI DSS and HIPAA.
Threat Modeling & Risk Workshops: Lead architecture and threat-modeling workshops to identify and prioritize risks then architect mitigation strategies that align with organizational risk tolerance.
Client Advisory & Communication: Act as the security Subject Matter Expert (SME)presenting complex GCP architectures trade-offs and compliance strategies to both highly technical teams and C-level executives to guide security-driven decision making.
Continuous Improvement & Innovation: Stay at the forefront of evolving GCP security services and the emerging threat landscape pilot new solutions (e.g. BeyondCorp Confidential VMs) and integrate them into reusable reference architectures.
What You Bring:
Extensive hands-on experience designing and implementing complex enterprise-grade security solutions on Google Cloud Platform (GCP).
Deep functional and technical knowledge across the GCP security ecosystem.
Proven expertise in secure cloud infrastructure identity and access management network security data protection and security operations.
Strong understanding of leading security frameworks and compliance standards (ISO 27001 PCI DSS HIPAA CIS Benchmarks).
Demonstrable experience with Infrastructure as Code tools such as Terraform or Deployment Manager.
A track record of leading threat modeling and risk assessment activities.
Exceptional communication presentation and interpersonal skills with the ability to influence and advise diverse stakeholders.
A proactive analytical mindset with a passion for continuous learning and innovation in cloud cybersecurity.
Google Cloud Certified Professional Cloud Architect certification is highly regarded.
Additional Information :
Why join us:
NCS Australia is where you can feel at home nurturing your talents and skills as we make tomorrow together one day at a time. Our benefits include paid parental leave initiatives focused on your well-being and discounted health insurance. You will also enjoy discounts on various products and services and be regularly recognised and rewarded for high performance. We are committed to your career development through our Capability Fingerprint industry and partner training programs special interest groups and an AI-driven learning platform. No matter where you are in your career we offer meaningful work and opportunities for growth.
NCS Australia is an equal-opportunity employer and we take pride in our commitment to valuing and supporting our people and the communities we are dedicated to attracting retaining and developing our people regardless of gender identity ethnicity sexual orientation disability and age. Applications are encouraged from all sectors of the community and we strongly encourage applications from the Veterans Aboriginal and/or Torres Strait Islander community.
At NCS Australia we are committed to supporting adjustments throughout the recruitment and selection process as well as during employment. We actively support and encourage people with disability to apply.
Agencies:
Weve got this. We request that you do not contact NCS employees outside of the Talent Acquisition team. NCS exclusively accepts resumes from agencies on our preferred supplier panel through the NCS Agency Portal. Agencies that submit resumes must have a valid fee agreement and be assigned to the particular requisition by the Talent Acquisition team. Any resumes that are submitted outside of this process will become the sole property of NCS. If a candidate is hired outside of this process no fee or payment will be given.
Work rights and background checks:
To be eligible for a position with us applicants will need to have valid work rights for Australia and be willing to undergo a comprehensive background checking process including probity and police checks
Remote Work :
No
Employment Type :
Full-time
Employment Type
Full-time
