Experience Level: Senior (5+ Years)
Languages Required: Fluent in Arabic and English (written and spoken)

Role Overview:

We are seeking an experienced GCP Cloud Security Specialist to lead the design, implementation, and management of robust security measures within Google Cloud Platform (GCP) environments. The ideal candidate will have a deep understanding of cloud security frameworks, particularly OWASP Cloud-Native Application Security Top 10, GCP Advanced API Security, and other industry best practices. This role demands proactive threat mitigation, ensuring compliance with international standards, and integrating security into all phases of the development lifecycle. Fluency in both Arabic and English is essential for effective communication with diverse stakeholders.​

Key Responsibilities:

• Security Strategy & Compliance:
  Develop and implement comprehensive security strategies tailored to GCP environments, ensuring adherence to standards such as NIST, CIS, GDPR, and ISO/IEC 27017. Conduct regular audits and assessments to maintain compliance and address any deviations promptly.​
• Identity & Access Management (IAM):
  Design and enforce robust IAM policies that adhere to the principle of least privilege. Implement role-based access controls to ensure secure and efficient access to resources, minimizing potential security risks.​
• Advanced API Security Implementation:
  Utilize GCP's Advanced API Security features to monitor and protect APIs from security threats, including malicious clients and abuse. Analyze API traffic to identify suspicious requests and implement measures to block or flag such requests. Evaluate API configurations to ensure they meet security standards and provide recommendations for improvements.​
• Threat Detection & Response:
  Utilize tools like Google Cloud Security Command Center, Google Cloud Armor, and Apigee Advanced API Security to continuously monitor for vulnerabilities and threats. Leverage Advanced API Security to detect and mitigate malicious activities, such as bot attacks and API abuse, by analyzing API traffic patterns and enforcing security actions. Develop and execute response plans to swiftly address identified risks, ensuring the integrity and security of cloud assets.​
• Security Assessments & Risk Management:
  Conduct regular vulnerability scans, security assessments, and compliance reviews to identify and remediate potential security issues. Develop risk management strategies to prioritize and address security concerns effectively.​
• DevSecOps & Automation:
  Integrate security best practices into the CI/CD pipelines, ensuring that security is embedded throughout the software development lifecycle. Utilize automation tools such as Terraform, Deployment Manager, and Ansible to enforce security policies consistently and efficiently.​
• Incident Response & Remediation:
  Lead the investigation and resolution of security incidents within GCP environments. Develop and maintain incident response plans, conduct post-mortem analyses, and implement measures to prevent future occurrences.​
• Security Awareness & Advisory:
  Serve as a subject matter expert on cloud security, providing guidance and training to internal teams. Stay abreast of emerging threats and security technologies, advising on proactive measures to enhance the organization's security posture.​

Skills & Tools:

• GCP Security Services:
  Proficient in Google Cloud Security Command Center, Identity-Aware Proxy (IAP), Google Cloud Armor, and Advanced API Security features for comprehensive security management.​
• Compliance & Governance:
  In-depth knowledge of regulatory frameworks and standards such as NIST, CIS, GDPR, and ISO/IEC 27017. Experience in conducting risk assessments and implementing governance structures to ensure compliance.​
• IAM & Network Security:
  Expertise in role-based access control, encryption methodologies, and VPC security configurations to safeguard cloud environments.​
• Threat Detection & Incident Response:
  Experience with SIEM tools, continuous monitoring solutions, and forensic analysis techniques to detect and respond to security incidents effectively.​
• DevSecOps & Automation:
  Skilled in utilizing Terraform, Deployment Manager, and Ansible to automate security implementations and integrate security into DevOps workflows.​
• Cloud Platforms:
  Primary expertise in GCP, with additional knowledge of AWS and Azure to support multi-cloud security strategies.​
• OWASP Guidelines:
  Familiarity with OWASP Cloud-Native Application Security Top 10 and OWASP Secure Coding Practices to identify and mitigate common cloud security risks.​
• Secrets Management:
  Proficiency in implementing secure methods for handling sensitive data, including encryption and secure storage solutions, as outlined in OWASP Secrets Management Cheat Sheet.​

Preferred Certifications:

• Google Professional Cloud Security Engineer:
  Highly recommended to validate expertise in designing and managing secure GCP solutions.​
• Google Professional Cloud Architect:
  Beneficial for demonstrating a comprehensive understanding of GCP architecture with a security-focused perspective.​
• Other Relevant Certifications:
  Certifications such as AWS Certified Security Specialty and Certified Information Systems Security Professional (CISSP) are advantageous, showcasing a broad and deep understanding of cloud security principles.​

Why Join Us:

This is an exceptional opportunity to lead cloud security initiatives in a dynamic and innovative environment. You will have the autonomy to shape security strategies, work with cutting-edge technologies, and collaborate with diverse teams to protect and enhance the organization's cloud infrastructure.