DevSpeak Jobs
HighLevel logo
HighLevel

Cloud Security Engineer

🕐 25 dias atrás📍 India🌍 Remoto

About the Role:

We are looking for a Cloud Security Engineer with strong experience in Google Cloud Platform (GCP), Kubernetes (GKE), VPNs and Cloudflare to design, implement, and maintain secure cloud-native infrastructure. The ideal candidate will work closely with DevOps, SRE, and engineering teams to enforce security best practices across applications, networks, and infrastructure.

Responsibilities:

Cloud & Infrastructure Security

  • Design and implement security controls across GCP environments
  • Secure GKE clusters including RBAC, network policies, and workload identity
  • Implement least privilege access (IAM) and enforce security boundaries
  • Manage secrets using GCP Secret Manager

Kubernetes Security (GKE)

  • Harden Kubernetes workloads and cluster configurations
  • Implement Pod Security Standards (PSS), Network Policies & Admission Controllers (OPA/Gatekeeper)
  • Monitor and mitigate container vulnerabilities

Network & Edge Security (Cloudflare)

  • Configure and manage Cloudflare WAF, DDoS protection, and rate limiting
  • Implement Zero Trust Access (ZTNA) policies
  • Secure APIs using Cloudflare security features
  • Manage DNS security and SSL/TLS configurations

Monitoring, Detection & Incident Response

  • Implement security monitoring using:
    • GCP Cloud Logging & Monitoring
    • SIEM tools (e.g., Splunk, Datadog, Chronicle)
  • Define alerting rules and respond to security incidents
  • Conduct root cause analysis (RCA) and post-incident reviews

Compliance & Governance

  • Ensure compliance with standards such as ISO 27001, SOC2, CIS Benchmarks
  • Perform regular security audits and vulnerability assessments
  • Automate compliance checks using policy-as-code tools

Requirements:

  • Strong hands-on experience with Google Cloud Platform (GCP): IAM, VPC, Cloud Armor, Cloud Logging, Security Command Center
  • Deep understanding of Kubernetes (GKE): RBAC, Network Policies, Ingress/Egress control, Service Mesh (Istio) security concepts (mTLS, policies)
  • Experience with Cloudflare [WAF, Zero Trust, Access, DNS, CDN security]
  • Proficiency in at least one: Python / Go / Bash
  • Experience with Terraform / Helm

Nice to Have:

  • Experience with service mesh security (Istio, Linkerd)
  • Knowledge of Zero Trust architecture
  • Exposure to multi-cloud environments
  • Security certifications (e.g., CISSP, CCSP, GCP Security Engineer)

🇧🇷 Essa vaga exige inglês. Você está pronto?

A DevSpeak Academy prepara desenvolvedores brasileiros para conquistar vagas internacionais. Domine o inglês técnico com professores que entendem o mundo dev.

Conheça a DevSpeak Academy