GCP Security Engineer – Cloud IDS & SCC Automation (Remote)
We need an experienced Google Cloud security engineer to help us remotely deploy Cloud IDS and automate Security Command Center (SCC) findings remediation.
Google Cloud currently alerts on threats; we want automatic response for cryptomining and high-severity findings.
Scope
Deploy Cloud IDS (managed GCP service)
Configure SCC finding export to Pub/Sub
Build Cloud Functions / Cloud Run responders to:
Stop or quarantine compromised VMs
Block egress via VPC firewall rules
Handle GKE cryptomining (delete pods, cordon/drain nodes)
Block malicious IPs via firewall / Cloud Armor
Provide guidance on post-compromise hardening (rebuild, IAM cleanup, Workload Identity)
Required Experience
Google Cloud Platform (security focus)
Security Command Center (SCC)
Pub/Sub + Cloud Functions / Cloud Run
GKE security basics
VPC firewall rules
Engagement
Remote
Short-term implementation
Immediate start
To Apply
Briefly describe:
Your experience with GCP security automation
Any incident response / cryptomining mitigation work you’ve done
Apply tot his job
Apply To this Job