Security Engineer
LanguageWire
AzureCloudCyber SecurityDistributed SystemsGoogle Cloud PlatformKubernetesMicroservicesSDLCTerraform
Salary
💰 CA$175,000 - CA$200,000 per year
Job Level
Senior
Tech Stack
CloudCyber SecurityGoogle Cloud PlatformKubernetesTerraform
About the role
- Run security architecture reviews for product features and the GCP environment; lead threat modeling and document risks, controls, and recommendations
- Own penetration testing engagements end‑to‑end: vendor/scoping, rules of engagement, coordination, finding validation, retest, and remediation tracking
- Act as the GCP security SME for project teams, advising on secure patterns for networking, data protection, compute runtimes, CI/CD, and logging/monitoring
- Design and enforce least‑privilege IAM in GCP: role design, service account lifecycle, workload identity, IAM Conditions, org/folder policy constraints, and access reviews
- Triage and route product security findings to engineering owners; tune rules, set severities and SLAs, and drive remediation with justified exceptions
- Contribute security guardrails via policy and infrastructure‑as‑code (org policies, constraints, reusable Terraform modules, admission/policy controllers) and integrate pre‑merge checks in CI/CD
- Create documentation and runbooks (design review checklist, IAM standards, exception process), deliver enablement sessions, and report progress and risks to security leadership
- Mentor engineers and code owners on secure‑by‑default coding and architecture best practices
Requirements
- 5–7 years of experience in product security, cloud security engineering, or a related field
- Strong knowledge of Google Cloud Platform (GCP) services and security best practices, including IAM, networking, data protection, and workload runtimes
- Hands-on experience with penetration testing coordination, threat modeling, and risk assessment
- Proficiency with Infrastructure-as-Code tools (Terraform, policy controllers, CI/CD integrations)
- Familiarity with designing and enforcing least-privilege IAM and conducting access reviews
- Ability to communicate security risks and recommendations clearly to engineering and leadership audiences
- Preferred: Professional certifications such as GCP Professional Cloud Security Engineer, OSCP, or CISSP
- Preferred: Experience building reusable security guardrails and automation at scale
- Preferred: Familiarity with Kubernetes (GKE) and container security
- Preferred: Prior success mentoring engineers or embedding security practices into development lifecycles
- Preferred: Experience reporting security metrics and influencing technical and business decision-making
Similar jobs on JobTailor
Principal Product Manager, Cloud Platform
Coupa Software
AWSAzureCloudGoogle Cloud PlatformKubernetesMicroservicesTerraform
GCP Solutions Architect
U.S. Department of Veterans Affairs
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaNoSQLPythonSQL
Senior Security Engineer
Serve Robotics
AWSCloudDNSDockerGoogle Cloud PlatformJavaScriptKubernetesLinuxPythonTCP/IPTerraform
SOC Analyst
Vodeno
CloudGoogle Cloud Platform