Principal Google Cloud Security Consultant

2 weeks, 6 days ago
Full-time
Lead
DevOps and Infrastructure
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised

Description

  • Lead secure Google Cloud architecture design and reviews across IAM, networking, workload protection, data protection, logging, monitoring, and compliance.
  • Advise enterprise customers on Google Cloud security strategy aligned to business risk, regulatory requirements, and operational priorities.
  • Lead cloud security posture assessments to identify risks, misconfigurations, control gaps, and operational weaknesses.
  • Advise customers on Google SecOps, Chronicle, SIEM strategy, cloud telemetry strategy, detection engineering, and SOC workflow design.
  • Advise customers on Wiz use cases including CNAPP, CSPM, vulnerability prioritization, attack path analysis, entitlement risk, and remediation workflows.
  • Lead Security Command Center and Security Command Center Enterprise implementation, configuration, tuning, and operationalization.
  • Integrate Security Command Center findings into vulnerability management, compliance, security operations, and executive risk reporting workflows.
  • Support SIEM modernization and migration planning, including log source rationalization, detection migration, alert tuning, and operational transition.
  • Own complex technical workstreams from discovery through delivery, including technical direction, scope, risks, and stakeholder coordination.
  • Translate technical security findings into clear business risks, investment priorities, and actionable recommendations for senior leaders.
  • Guide customer teams through secure Google Cloud design, configuration, deployment, and operational maturity decisions.
  • Advise on Vertex AI and AI workload security, including identity, access control, data protection, governance, logging, and monitoring.
  • Create architecture diagrams, assessment deliverables, roadmaps, implementation documentation, and operational runbooks.
  • Develop repeatable methodologies, assessment frameworks, implementation patterns, reference architectures, and reusable technical assets.
  • Mentor consultants and provide technical leadership during client reviews, executive briefings, architecture discussions, and operational meetings.
  • Contribute to process improvement and automation initiatives that improve consistency, scalability, and delivery quality.

Requirements

  • 8+ years of security consulting experience across multiple domains, including at least 4 years working directly as a Google Cloud consultant.
  • Proven track record delivering Google Cloud security architecture, posture modernization, and operationalization outcomes from discovery through handover.
  • Hands-on leadership in cloud security projects across security, cloud, DevOps, architecture, compliance, and operations teams.
  • Documented success integrating cloud-native security platforms, SIEM, CNAPP/CSPM, logging, monitoring, vulnerability management, and SOC workflows.
  • Experience working under regulatory or industry frameworks such as FedRAMP, FISMA, HIPAA, HITRUST, PCI, CMMC, or similar standards.
  • Demonstrable client-facing consulting experience with professionalism and clear communication in ambiguous, high-stakes, or fast-paced engagements.
  • Deep experience designing, securing, deploying, and operationalizing Google Cloud environments.
  • Strong expertise in Google Cloud security architecture, IAM, networking, logging, monitoring, data protection, workload security, and compliance-oriented design.
  • Hands-on experience with Google Cloud security services, including Security Command Center or equivalent cloud-native security platforms.
  • Experience leading cloud security posture assessments, architecture reviews, or enterprise cloud security modernization efforts.
  • Ability to lead complex technical engagements with multiple stakeholders, competing priorities, and enterprise-scale environments.
  • Excellent communication, organizational, problem-solving, and executive briefing skills.
  • Strong documentation skills for diagrams, assessment reports, roadmaps, implementation plans, written recommendations, and supporting materials.
  • Critical thinking skills to balance security requirements against business objectives, operational realities, and customer maturity.
  • Ability to adapt quickly in fast-paced, dynamic customer environments.
  • Google Cloud Professional Cloud Security Engineer, Professional Cloud Architect, or related certification is desired.
  • Google Cloud Professional Security Operations Engineer or equivalent Google Cloud security experience is desired.
  • Wiz, Google SecOps/Chronicle, SIEM migration, Vertex AI security, Terraform, or related cloud security skills are preferred.

Benefits

  • $125,000 - $217,000 annual salary range.
  • Eligibility for annual incentive, commission, and/or recognition programs.
  • Flexible work model with remote work and the option to work from home or an office.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GRC Specialist (GCC / GCCH)

Axiom 11-50 IT Services

The GRC Specialist at this company supports client governance, risk management, and CMMC compliance by scoping environments, guiding documentation, and helping ensure assessments are passed through accurate, consistent execution.

Cybersecurity
1 day, 17 hours ago

Cybersecurity Preparedness Support Expert (Intermediate / Senior)

inventYOU 1-10 Internet Software & Services

inventYOU is hiring Cybersecurity Preparedness Support Experts to support security readiness and risk analysis for complex environments.

Cybersecurity Penetration Testing
2 days, 17 hours ago

Professional Services Engineer - DOW Skillbridge Approved

Corelight 251-1K IT Services

Corelight is hiring a Professional Services team member to help customers deploy and use its cybersecurity products while improving network security and supporting incident investigations and integrations.

Bash Cybersecurity Elasticsearch Kafka Linux Logstash macOS Perl PowerShell Python SIEM Splunk TCP/IP Unix
3 days, 16 hours ago

Penetration Tester

Accenture 100K+ Professional Services

Accenture Federal Services is seeking a Penetration Tester to lead and execute a unified penetration-testing program across network, application, and cloud environments for federal clients.

Burp Suite DevSecOps Metasploit Penetration Testing SOC
3 days, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers