DevSecOps for GCP/GKE

We are looking for a Google Cloud Platform DevSecOps engineer. We need to protect hundreds of GKE cluster nodes with various security tools, automate their deployment, conduct compliance checks for the infrastructure, and perform log analysis.

Your primary tasks will include:

• Verification of published exploits and vulnerabilities in Google security bulletins
• Tuning open-source security tools for K8s/GKE.
• Analyzing security events and taking appropriate measures.
• Developing Terraform configurations and modules to manage GCP security components.
• Developing Helm charts.
• Reviewing user access requests.
• Maintaining network security rules.
• Maintaining integrations between GCP and other identity providers (Federated Identity).
• Developing shell scripts to automate routine tasks.
• Securing and managing our secondary Azure infrastructure environments.

What we expect from you:

• Motivation to study security specifications, standards, and open-source code.
• To be a strong team player.
• The ability to take ownership of the features you ship.
• An interest in the broader feature and product vision.
• A self-starting mindset, a strong "can-do" attitude, and great interpersonal skills.
• Comfort with writing extensive documentation.

A big plus would be:

• Google Cloud certification.
• Kubernetes certification.
• Terraform certification.
• Expert-level knowledge of BigQuery SQL.
• Experience with SSO, OAuth2, OIDC, and SAML.
• Debugging, reverse engineering experience.
• Go programming experience.