[CMI] GCP Cloud Architect

Any - Poland

Monthly Salary: Not Disclosed

Posted on: 30+ days ago

Vacancies: 1 Vacancy

Job Summary

Project the aim youll have

Were hiring a GCP Cloud Architect to design implement and evolve enterprisegrade Landing Zones on Google Cloud. Youll shape the organization/folder/project hierarchy identity and network foundations security guardrails and automation patterns that enable product teams to ship fast and safely at scale. Youll also guide teams adopting GKE Cloud Run and data services on top of a wellgoverned platform.

Position how youll contribute

Landing Zone architecture: Define and implement the Org Folders Projects model environments (prod/nonprod) Shared VPC architecture (hubandspoke) hierarchical firewall policies tags & IAMstrategy and Organization Policy constraints (guardrails).
Identity & access: Integrate Cloud Identity/Google Workspace workload identity federation leastprivilege IAM roles service accounts and secrets/encryption with Cloud KMS (CMEK).
Network & connectivity: Design VPCs subnets Cloud Router/NAT Private Google Access Private Service Connect VPC peering/Cloud VPN/Interconnect Cloud Load Balancing and Cloud Armor/WAF.
Security & compliance: Implement Security Command Center audit logging VPC Service Controls(data perimeters) detective/preventive controls and policyascode; drive remediation at scale.
Infrastructure as Code & automation: Lead Terraform standardization (Cloud Foundation Toolkit/Blueprints modules environments pipelines) reusable modules and automated drift detection; establish golden patterns and documentation.
Platform enablement: Provide pavedroad patterns for GKE Cloud Run Cloud Functions Artifact Registry Cloud Build/Cloud Deploy and GitHub Actions integration.
Observability & FinOps: Drive Cloud Monitoring/Cloud Logging (KQLlike Log Analytics) SLOs and alerting standards; implement budgets/tags/labels for allocation and cost optimization.
Consulting & governance: Run design reviews threat modeling and readiness assessments; coach squads and stakeholders to adopt guardrails and best practices.
Continuous improvement: Track GCP roadmap pilot new features and codify learnings into blueprints and documentation.

Qualifications :

Expectations the experience you need

4 years in cloud/platform architecture 2 years designing on GCP with handson Landing Zone delivery (org policies Shared VPC perimeter security IAM and network baselines).
Expert Terraform on GCP (providers modules workspaces CI/CD state management) plus Gitcentric workflows and code reviews.
Deep VPC/Networking (routing NAT DNS hybrid connectivity zerotrust ingress/egress).
Strong security background (CMEK SCC VPC SC audit logging governance/controls).
Platform knowledge across GKE and/or Cloud Run build & artifact flows (Cloud Build/Artifact Registry).
Excellent stakeholder communication and the ability to translate guardrails into developerfriendly paved roads.
Nice to have: FinOps (budgets/commitments) Cloud Deploy Config Controller/Config Sync Anthos Policy Controller (OPA) Chronicle/SIEM integration.
Certifications: Google Professional Cloud Architect Professional Cloud Security Engineer or Professional Cloud Network Engineer (or in progress).

Additional skills the edge you have

FinOps (budgets/commitments) Cloud Deploy Config Controller/Config Sync Anthos Policy Controller (OPA) Chronicle/SIEM integration.
Certifications: Google Professional Cloud Architect Professional Cloud Security Engineer or Professional Cloud Network Engineer (or in progress).

Additional Information :

Our offer professional development personal growth:

Flexible employment and remote work
International projects with leading global clients
International business trips
Non-corporate atmosphere
Language classes
Internal & external training
Private healthcare and insurance
Multisport card
Well-being initiatives

Position at: Software Mind Poland

This role requires candidates to be based in the European Union.

Remote Work :

Yes

Employment Type :

Full-time

Project the aim youll haveWere hiring a GCP Cloud Architect to design implement and evolve enterprisegrade Landing Zones on Google Cloud. Youll shape the organization/folder/project hierarchy identity and network foundations security guardrails and automation patterns that enable product teams to s...

Project the aim youll have

Position how youll contribute

Landing Zone architecture: Define and implement the Org Folders Projects model environments (prod/nonprod) Shared VPC architecture (hubandspoke) hierarchical firewall policies tags & IAMstrategy and Organization Policy constraints (guardrails).
Identity & access: Integrate Cloud Identity/Google Workspace workload identity federation leastprivilege IAM roles service accounts and secrets/encryption with Cloud KMS (CMEK).
Network & connectivity: Design VPCs subnets Cloud Router/NAT Private Google Access Private Service Connect VPC peering/Cloud VPN/Interconnect Cloud Load Balancing and Cloud Armor/WAF.
Security & compliance: Implement Security Command Center audit logging VPC Service Controls(data perimeters) detective/preventive controls and policyascode; drive remediation at scale.
Infrastructure as Code & automation: Lead Terraform standardization (Cloud Foundation Toolkit/Blueprints modules environments pipelines) reusable modules and automated drift detection; establish golden patterns and documentation.
Platform enablement: Provide pavedroad patterns for GKE Cloud Run Cloud Functions Artifact Registry Cloud Build/Cloud Deploy and GitHub Actions integration.
Observability & FinOps: Drive Cloud Monitoring/Cloud Logging (KQLlike Log Analytics) SLOs and alerting standards; implement budgets/tags/labels for allocation and cost optimization.
Consulting & governance: Run design reviews threat modeling and readiness assessments; coach squads and stakeholders to adopt guardrails and best practices.
Continuous improvement: Track GCP roadmap pilot new features and codify learnings into blueprints and documentation.

Qualifications :

Expectations the experience you need

4 years in cloud/platform architecture 2 years designing on GCP with handson Landing Zone delivery (org policies Shared VPC perimeter security IAM and network baselines).
Expert Terraform on GCP (providers modules workspaces CI/CD state management) plus Gitcentric workflows and code reviews.
Deep VPC/Networking (routing NAT DNS hybrid connectivity zerotrust ingress/egress).
Strong security background (CMEK SCC VPC SC audit logging governance/controls).
Platform knowledge across GKE and/or Cloud Run build & artifact flows (Cloud Build/Artifact Registry).
Excellent stakeholder communication and the ability to translate guardrails into developerfriendly paved roads.
Nice to have: FinOps (budgets/commitments) Cloud Deploy Config Controller/Config Sync Anthos Policy Controller (OPA) Chronicle/SIEM integration.
Certifications: Google Professional Cloud Architect Professional Cloud Security Engineer or Professional Cloud Network Engineer (or in progress).

Additional skills the edge you have

FinOps (budgets/commitments) Cloud Deploy Config Controller/Config Sync Anthos Policy Controller (OPA) Chronicle/SIEM integration.
Certifications: Google Professional Cloud Architect Professional Cloud Security Engineer or Professional Cloud Network Engineer (or in progress).

Additional Information :

Our offer professional development personal growth:

Flexible employment and remote work
International projects with leading global clients
International business trips
Non-corporate atmosphere
Language classes
Internal & external training
Private healthcare and insurance
Multisport card
Well-being initiatives

Position at: Software Mind Poland

This role requires candidates to be based in the European Union.

Remote Work :

Yes

Employment Type :

Full-time

Key Skills

APIs
Pegasystems
Spring
SOAP
.NET
Hybris
Solution Architecture
Service-Oriented Architecture
Adobe Experience Manager
J2EE
Java
Oracle

Apply Now

About Company

Software Mind

Software Mind develops solutions that make an impact for companies around the globe. Tech giants & unicorns, transformative projects, emerging technologies and limitless opportunities these are a few words that describe an average day for us. Building cross-functional engineering te ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click