Key skills
CloudCyber SecurityFirewallsGoogle Cloud PlatformAIMLGenAIRAGGCPGoogle CloudCollaborationNetwork SecurityCloud Security
About this role
Role Overview
- Collaborate with system designers to integrate security requirements into the design phase of IT systems
- Develop and maintain security architecture documentation, including security models, frameworks, and diagrams
- Ensure that security architecture aligns with the organization’s business objectives and regulatory requirements
- Understand security risks in order to identify potential vulnerabilities and threats
- Develop risk mitigation strategies and recommend appropriate security controls
- Design and implement security solutions, including firewalls, encryption protocols, and access control mechanisms
- Collaborate with development and operations teams to ensure secure creation and deployment of IT systems
- Provide guidance on secure coding practices
- Prioritize driving highly impactful changes that improve the business
- Conduct full-stack architecture reviews of products and platforms
- Provide expertise on information security for complex systems and applications in cloud and on-prem environments
- Design security reference architectures and create implementation/configuration guides
- Provide expertise on creation and implementation of security controls with an emphasis on cloud technologies
- Efficiently assess and communicate risk accurately while negotiating priorities with cross-domain stakeholders
- Collaborate with engineering teams to perform advanced security analysis on complex cloud systems, identifying gaps while contributing to design solutions and security requirements
Requirements
- 4-year degree OR equivalent experience
- Polyglot programmer comfortable in many languages across different platforms
- 7+ years of hands-on experience in technology, with extensive knowledge of cybersecurity domains including Information Protection, AI Security and/or Cloud Security (GCP strongly preferred)
- Demonstrated curiosity and ability to learn
- Expertise in containerization technologies and tools
- Solid understanding of genAI/ML
- Understanding of prompt injection and its various styles (direct, indirect, RAG poisoning, etc.) / Familiarity with OWSAP top ten for LLMs
- Understanding of MCP auth patterns including dynamic client registration
- Knowledge in RAG authorization patterns
- Experience mitigating the security risks of local coding agents
- Seeks out cross-team collaboration opportunities
- Stays current on relevant technologies with self-directed learning
- Excellent written and verbal interpersonal skills with strong presentation abilities
- Proven history of effectively utilizing a variety of security tools and technologies across diverse environments.
- Good understanding of security management workflows in large enterprise organizations and complex environments
- Has a good understanding of the current threat landscape and the challenges that most organizations are facing
- Knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO/IEC 27001)
- Strong understanding of network security, cryptography, and secure software development
- Experience with security technologies, such as firewalls, IDS/IPS, SIEM, and DLP
Tech Stack
- Cloud
- Cyber Security
- Firewalls
- Google Cloud Platform
Benefits
- comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more
- 401(k)
- employee discount
- short term disability
- long term disability
- paid sick leave
- paid national holidays
- paid vacation