Expert Network Security Engineer - GCP

We are seeking an experienced Network & Security Operations Expert to oversee the daily operational workload for networking, load balancers, and security within a Google Cloud Platform (GCP) environment. The ideal candidate will have extensive experience in network administration, security policies, cloud networking, and traffic management while ensuring reliability, security, and compliance of cloud infrastructure.

Key Responsibilities:

• Network Infrastructure Management: Design, deploy, and maintain network configurations across GCP, including VPCs, subnets, VPNs, and hybrid connectivity.

• Load Balancing & Traffic Management: Configure and optimize Cloud Load Balancers (HTTP/S, TCP/UDP, Internal/External) to ensure efficient traffic distribution.

• Security & Compliance: Implement and manage firewalls, IAM policies, security rules, DDoS protection, and encryption to protect cloud environments.

• Monitoring & Incident Response: Use Stackdriver, Cloud Armor, IDS/IPS, and SIEM tools to detect and respond to security threats and network anomalies.

• Automation & Optimization: Develop automation scripts and Infrastructure as Code (IaC) solutions using Terraform, Python, or Ansible for efficient network and security operations.

• Performance & Reliability: Continuously analyze and enhance network performance, ensuring minimal latency and high availability.

• Access Control & Zero Trust Security: Enforce strict access control policies, including Google Cloud IAM roles, least privilege access, and Zero Trust architecture.

• Collaboration & Documentation: Work closely with DevOps, cloud architects, and security teams to ensure best practices and maintain thorough documentation of network configurations and security policies.

• Education: Bachelor’s degree in Computer Science, Network Security, Information Technology, or equivalent experience.

• Experience: 8+ years in network security operations, with at least 3+ years managing GCP network and security workloads.

• Certifications: GCP Professional Cloud Network Engineer or Cloud Security Engineer is highly preferred.

• Technical Proficiency:

• Expertise in GCP networking services (VPC, Interconnect, Cloud NAT, Cloud DNS, Hybrid Connectivity, Service Mesh).

• Strong knowledge of Cloud Load Balancing, SSL/TLS, and CDN configurations.

• Experience with firewalls, security policies, IAM, and network segmentation.

• Proficiency in monitoring and logging tools (Cloud Logging, Cloud Monitoring, Prometheus, Grafana).

• Experience with SIEM tools, threat detection, and compliance frameworks (ISO 27001, NIST, SOC2, GDPR).

• Hands-on expertise in scripting and automation (Terraform, Python, PowerShell, Bash).

• Strong understanding of Zero Trust security models and privileged access management (PAM).

Qualifications Required:

• Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience).

• 8+ years of hands-on experience managing GCP environments.

• Strong knowledge of GCP security principles, IAM, VPC security, firewall configurations, and encryption.

• Experience with GCP-native security tools such as Security Command Center, Cloud Armor, Forseti Security, and Chronicle.

• Proficiency in Infrastructure-as-Code (IaC) tools like Terraform or Deployment Manager.

• Familiarity with DevOps practices, CI/CD pipelines, and containerized environments (GKE, Docker, Kubernetes).

• Experience with monitoring and logging tools such as Cloud Logging, Cloud Monitoring, and Prometheus.

• Strong scripting skills in Python, Bash, or other automation languages.

• Knowledge of regulatory compliance requirements (e.g., GDPR, HIPAA, ISO 27001, PCI-DSS).

• Excellent problem-solving skills and ability to work in a fast-paced environment.

Preferred Qualifications:

• Experience with hybrid and multi-cloud networking.

• Familiarity with incident response, forensic analysis, and security auditing.

• Knowledge of Web Application Firewalls (WAF) and API Security.

• Understanding of ITIL processes for incident, problem, and change management.