SEEKING: GCP Cloud Lead Security
We are looking for a GCP Cloud Lead Security
The GCP Cloud Lead Security will be responsible for defining low levelstrategy and configurations and supporting in the deployment of securitysolutions as part of GCP Cloud Strategy (Data Migration, Endpoint protectionincluding server protection, Cloud App Security, Identity Protection, CSPM,CIEM, Workload protection) and security for GCP-based projects.
TASKS & RESPONSABILITIES(Role)
He/she will oversee and define technical strategy (low level design) andconfigurations for the following among other security solutions associated withGCP environment/s:
● Endpointsprotection against real-time malware by identifying and blocking threats andattack surface reduction including endpoint data loss prevention.
● Implementstrict IAM policies to ensure that only authorized users access cloudresources.
● AnomalyBehaviour.
● Appsadaptive access, device compliance and access control.
● Infrastructuresecurity (serverless, containers, IaaS, PaaS, Databases).
● Cloud AppSecurity (SaaS).
● GCP Policiesand Security Governance.
● SecurityPosture Management (Cloud Compliance).
● WAF/DDoS
● Privilegeaccess Management.
● FileIntegrity Monitoring.
● Integrationof Logs with SIEM for monitorization
● Definitionof use case scenarios for monitorization of GCP apps together with SOC.
● Strategy forAI in GCP Cloud.
He/she is an operational partner and will report to the client´s GlobalCISO
EXPERIENCE, KNOWLEDGE &SKILLS
● Proven workexperience as a Security Engineer or GCP Platform Security Expert or similarrole, with strong technical background in various IT security technologies,including infrastructure, applications, data, cloud, and networkcommunications.
● Strongexperience working in complex multi-country, multi-cultural, environments.
● Extensiveexperience in migration projects, moving high volume databases from legacy tocloud native solutions.
● Anenthusiasm for staying up to date with the very latest updates about securitythreats and solutions.
● Strong timemanagement and organizational skills
● Previousexposure to Linux and/or Windows Operating Systems, coding languages, and/orNetworks.
● Strongexperience on major’s ERPs (SAP) with a wide experience rolling out them.
● Strongexperience on GCP and other cloud vendors technologies (Microsoft and AWS).
● Strongdata-oriented mindset.
● Excellenttechnical, analytical and project management skills to manage large-scale ITprojects.
● Good leadershipand interpersonal skills and be able to build strong relationships with keystakeholders.
● Goodunderstanding how the different technology components in the organizationsupport its business operations.
● Excellentcommunication skills and ability to effectively communicate the IT architecture& data strategy and plans to stakeholders and IT team members.
● Strongproblem-solving skills to identify and manage IT architecture security risksand issues.
● Stronganalytical and critical thinking skills, ability to work under pressure.
● Be aneffective team player working both within and outside the IS/IT organisation.
● Work tobring stakeholders along with decisions.
● Ability towork independently and pro-actively contribute to a global team environment.
● Excellentinterpersonal, communication and presenting skills; able to conciselycommunicate security risks to both technical and business audiences.
● Industrycertification from vendors: ISC2, ISACA, GIAC, EC-Council, CompTIA, ITIL,Comptia Security
● Strong written and verbalcommunication skills in English
● Experiencein some of the following areas:
o Security products includingfirewalls, URL filtering, information security and EDR/XDR/NDR includingMicrosoft E5 license stack products and GCP security.
o Emerging technologies andtrends (ICS&OT, IIOT, Network, Infra, Cloud, data encryption, automotiveindustry technologies and vehicle security, etc.)
o Identify and understand themost common application security vulnerabilities (OWASP Top 10).
o Relevant laws, regulation andindustry standards and frameworks related to security (NIST, SANS, CIS, ENISA,UNE, GDPR, PCI-DSS, SOC2, etc.).
o Implement security controls toimprove system/platform overall security.
o Identity and AccessManagement.
o Application Security,cryptography and protocols.
o Secure System Development LiveCycle
o Security Incident Managementand monitoring
o Security Operations, and CyberSecurity
o Vulnerability management andpenetration testing
o Information SecurityManagement, Risk Management, and Asset Security
o Endpoints and ServerSecurity, MDM/MAM, Network Security, and Cloud Security
o Security standards, laws, andcompliance.
o Business continuity anddisaster recovery continuity of operations plans.
Language :
● Fluent in English with exceptionalcommunication skills.( minimum C1)
WE OFFER:
· Full-time Freelance contract
· Rate: €320/€360 per day + VAT (According toproven experience)
· Long Term Project. Recurrence in Projects
· Location: Madrid – (Alcobendas) Hybrid 50% inperson 50% teleworking per week
Para poder acceder a las direcciones de correo electrónico / sitio web de la aplicación en este anuncio, primero debe autenticarse en el sitio.
¿Aún no tiene una cuenta en ITJobs?
Acceda here y cree su propia cuenta