Cloud Security Architect, UK Security Operations

Google

  • London
  • Permanent
  • Full-time
  • 20 days ago
Minimum qualifications:
  • Bachelor's degree or equivalent experience.
  • Industry-recognized security certifications such as CISSP, CCSP, or relevant cloud-specific security credentials.
  • 5 years of experience in designing and securing multi-cloud environments, including IaaS, PaaS, and SaaS.
  • Experience with IaC tools and automating security controls and processes.
  • Eligibility to obtain UK Developed Vetting (DV) security clearance; British Citizenship is required for this role.
Preferred qualifications:
  • Experience leading comprehensive threat modeling exercises and conducting detailed risk assessments to identify and prioritize security vulnerabilities across the platform.
  • Experience securing modern cloud-native architectures, including containerization technologies (e.g., Kubernetes, Docker) and serverless computing.
  • Demonstrated ability to define secure architectural patterns and integrate security practices across the entire software development lifecycle (DevSecOps).
  • Demonstrated ability to articulate complex security concepts to technical and non-technical stakeholders, fostering a collaborative security culture.
  • Proficiency in evaluating, integrating, and optimizing a wide range of security tools and technologies, such as SIEM, WAF, DLP, and CSPM solutions.
About the jobThe UK Security Operations (SecOps) team in Google Public Sector delivers, operates and secures private cloud services. We aim to provide the flexibility, reliability, and scalability of public cloud for customers with exceptionally high security requirements that can only be met in a private cloud environment. We deliver and operate these private cloud deployments for the most critical customers, helping scale, secure and maintain the deployment whilst working closely with Google product teams to continually improve our technology.This role is pivotal for proactively securing our platform and applications for Google's public sector customers, moving beyond reactive measures to embed security by design. You'll be responsible for developing and implementing comprehensive security architectures across cloud environments and software solutions. This involves defining secure patterns, standards, and best practices that ensure our infrastructure, applications, and data are resilient against evolving threats. You'll provide architectural leadership for new initiatives, conducting thorough security reviews, and identifying strategic improvements to existing systems. Your work will focus on automating security controls, integrating security into the full development lifecycle (DevSecOps), and ensuring holistic platform compliance with relevant industry standards and regulations.Responsibilities
  • Architect and implement security solutions for cloud platforms, ensuring secure configurations and compliance.
  • Drive security automation and integrate security practices into CI/CD pipelines (DevSecOps).
  • Identify, assess, and mitigate cloud security risks, and support incident response.
  • Maintain adherence to security standards and conduct regular cloud security audits.
  • Provide expert guidance on cloud security best practices and foster a security-aware culture.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also and If you have a disability or special need that requires accommodation, please let us know by completing our .

Google