Apply for GCP Security Specialist

On behalf of our client, Affinity is seeking a GCP Security Specialist for a 6 month contract. Candidates can be located anywhere in Canada as this will be a remote contract.

Candidate must have a deep expertise in securing Google Cloud Platform (GCP) data lake implementations, with a strong focus on integrating Microsoft Identities for Single Sign-On (SSO) and leveraging our existing Microsoft Sentinel SIEM for security monitoring. This individual will ensure the secure adoption of GCP's platform capabilities within a hybrid cloud environment, maximizing our existing Microsoft investments while addressing potential security gaps.

Key Responsibilities:

• Recommend and implement GCP security services for GCP services and GCP data lakes, including: 

• Network Security: Cloud Armor for internet-facing services, VPC peering/Private Service Connect for secure hybrid connectivity.

• IAM: Architect and implement secure authentication and authorization mechanisms using Microsoft Identities (Azure AD) for accessing GCP data and services achieving SSO. Familiarity with the Saviynt IAM platform is an asset.

• Data Protection: Encryption, DLP for data at rest and in transit, especially during cross-cloud integration. 

• API Security: Secure API design and implementation for data integration.

• Security Analytics: Configure GCP to export relevant security logs and telemetry (e.g., Cloud Audit Logs, VPC Flow Logs, Firewall Rules Logs) into Microsoft Sentinel. Fine tune log sources to minimize cost while not sacrificing security telemetry data.

• Evaluate the security implications and potential shortcomings of prioritizing Microsoft Identity and Sentinel over native GCP security tools.

• Provide expert recommendations on how to best leverage our existing Microsoft investments while addressing any security gaps and ensuring a robust overall security posture for the GCP data lake.

• Recommend and implement GCP security services as needed to complement the Microsoft-centric approach.

• Document the implemented security architecture, integration processes, and any identified risks or limitations.

• Collaborate closely with our identity management, security operations, and data teams.

Required Skills and Experience:

• Minimum 5+ years of hands-on experience securing Google Cloud Platform (GCP).

• Proven expertise in integrating Microsoft Entra ID for SSO with GCP services.

• Deep understanding of configuring GCP to export security logs to external SIEM systems, specifically Microsoft Sentinel.

• Ability to identify and articulate the pros and cons of prioritizing Microsoft security tools within GCP.

• Excellent understanding of authentication and authorization protocols (e.g., OAuth 2.0, SAML).

• Strong troubleshooting and analytical skills in hybrid cloud environments.

Desired Skills and Experience:

• Relevant GCP and Azure security certifications.

• Experience with Entra ID Conditional Access policies in the context of GCP access.

• Knowledge of Google's native security tools (e.g., Security Command Center, Chronicle) and their potential benefits.

• Proficiency with Terraform is an asset.

Affinity Earn:

Know someone who’s great for this, or any of our open roles? Earn up to $4,000/year for each successful referral through Affinity Earn. You can also earn up to $50,000 for helping us find new clients. Learn about our referral program at https://affinity-group.ca/earn/ or browse our jobs & follow us at https://www.linkedin.com/company/affinity-staffing/jobs/

About Affinity: 

Affinity Group is a technology and business consulting and services company. We believe in creating long term relationships between clients and consultants that foster a mutually beneficial partnership. Affinity is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All employment is decided on the basis of qualifications, merit and business need.

For more information on Affinity, please visit www.affinity-group.ca

Job Number: 12021