Intermediate DevOps Engineer, GCP
Dev.Pro
CloudDNSGoogle Cloud PlatformKubernetesMicroservicesTerraform
Job Level
Mid-LevelSenior
Tech Stack
CloudDNSGoogle Cloud PlatformTerraform
About the role
- Define and implement Org → Folders → Projects model, environments, Shared VPC architecture, hierarchical firewall policies, tags & IAM strategy, Organization Policy constraints
- Integrate Cloud Identity/Google Workspace, workload identity federation, least‑privilege IAM roles, service accounts, secrets/encryption with Cloud KMS (CMEK)
- Design VPCs, subnets, Cloud Router/NAT, Private Google Access, Private Service Connect, VPC peering/Cloud VPN/Interconnect, Cloud Load Balancing and Cloud Armor/WAF
- Implement Security Command Center, audit logging, VPC Service Controls, detective/preventive controls and policy‑as‑code; drive remediation
- Lead Terraform standardization, reusable modules and automated drift detection; establish golden patterns and documentation
- Provide paved‑road patterns for GKE, Cloud Run, Cloud Functions, Artifact Registry, Cloud Build/Cloud Deploy and GitHub Actions integration
- Drive Cloud Monitoring/Cloud Logging, SLOs and alerting standards; implement budgets/tags/labels for allocation and cost optimization
- Run design reviews, threat modeling and readiness assessments; coach squads and stakeholders
- Track GCP roadmap, pilot new features and codify learnings into blueprints and documentation
Requirements
- 4+ years in cloud/platform architecture
- 2 + years designing on GCP with hands‑on Landing Zone delivery (org policies, Shared VPC, perimeter security, IAM and network baselines)
- Expert Terraform on GCP (providers, modules, workspaces, CI/CD, state management)
- Git‑centric workflows and code reviews
- Deep VPC/Networking (routing, NAT, DNS, hybrid connectivity, zero‑trust ingress/egress)
- Strong security background (CMEK, SCC, VPC SC, audit logging, governance/controls)
- Platform knowledge across GKE and/or Cloud Run, build & artifact flows (Cloud Build/Artifact Registry)
- Excellent stakeholder communication
- Nice to have: FinOps (budgets/commitments), Cloud Deploy, Config Controller/Config Sync, Anthos Policy Controller (OPA), Chronicle/SIEM integration
- Certifications: Google Professional Cloud Architect, Professional Cloud Security Engineer or Professional Cloud Network Engineer (or in progress)
- Candidates must be based in the European Union
Similar jobs on JobTailor
Intermediate DevOps Engineer, GCP
Dev.Pro
CloudDNSGoogle Cloud PlatformKubernetesMicroservicesTerraform
Principal Software Engineer, Network
Airwallex
AWSCloudDNSFirewallsGoogle Cloud PlatformKubernetesMicroservicesNGINX
Senior Security Engineer, DevSecOps
PrizePicks
AWSAzureCloudFirewallsGoogle Cloud PlatformKubernetesNoSQLSQLTerraform
Network Automation Engineer
The Last Mile
DNSFirewallsGoogle Cloud PlatformLinuxMacOSSwitchingTerraform