ApTask - Dallas, TX
posted 2 months ago
As a GKE Senior Security Engineer specializing in Google Cloud Platform, you will play a pivotal role in enhancing the security posture of various Google Cloud services, including GKE, Cloud SQL, and Cloud Storage. Your primary responsibility will be to conduct thorough threat modeling to identify potential threats and vulnerabilities associated with these services. By leveraging your expertise in cybersecurity principles, you will specify and implement mitigating controls that effectively reduce the risks associated with operating in the Google Cloud environment. This position requires a deep understanding of both the technical and operational aspects of cybersecurity, particularly in highly regulated industries such as financial services. In this role, you will collaborate with cross-functional teams to design and review technical architectures, ensuring that security best practices are integrated throughout the development lifecycle. You will also be responsible for identifying vulnerabilities using established frameworks such as CWE and OWASP, and applying security practices related to authentication, authorization, logging, monitoring, encryption, and network segmentation. Your experience in operating systems hardening and familiarity with development concepts, including CI/CD pipelines and Infrastructure as Code (IaC) using tools like Terraform and CloudFormation, will be essential for success. Additionally, you will work within a DevOps and agile team structure, utilizing your knowledge of containerization technologies such as Docker and Kubernetes, as well as serverless architectures. Your contributions will directly impact the security and compliance of our cloud infrastructure, making it imperative that you stay updated on the latest security trends and threats in the cloud landscape.