Mandiant logo
Principal Cloud Security Architect (Google Cloud Platform) - Remote (East Region, US) - Mandiant Austin, TX Bookmark Share Print 56 0 0

Listing Description

Job Description

Mandiant’s Security Transformation Services team helps organizations build an effective security operations program that minimizes organizational risk and reduces the impact of security breaches. With a focus for securing cloud-based architectures, our consultants work from initial assessment and configuration review of security controls to detail technical recommendations that can be practically implemented to harden environments, enhance visibility and detection, and improve processes to reduce the risk of compromise. 

As a GCP cloud security architect, you are responsible for developing and overseeing a cloud computing strategy for our clients.  This includes working with clients to understand their Google Cloud Platform (GCP) adoption plans, hosted application designs, and cloud management and monitoring methods.  The GCP cloud security architect will provide clients with industry best practices and insights regarding application architecture and deployment in GCP environments.  

You will also need to apply your GCP security, network architecture, hardening, and logging enforcement skills to assist clients with containment and remediation workstreams related to cloud security incidents. The successful candidate will possess strong consulting skills, be adept in leading multiple projects under tight deadlines, and possess in-depth experience in GCP architecture, best-practices, and security hardening and monitoring.  

What You Will Do:  

  • Perform technical security configuration assessments of client’s Google Cloud Platform (GCP) deployments. 

  • Guide clients in the creation of optimized GCP hardening controls that deliver enterprise-grade security, compliance, and responsiveness to the latest cloud-based threats and attacks.   

  • Architect and enhance security controls for existing GCP cloud deployments leveraged by clients.  

  • Assist with defining and developing appropriate governance for GCP architectures.  

  • Provide recommendations and guidance for provisioning and automating cloud services. 

  • Provide recommendations and guidance for orchestration of cloud workflows. 

  • Lead incident response containment, hardening, and eradication workstreams for incidents that involve GCP architectures.  

  • Demonstrate a deep understanding of GCP concepts and architectures – with a focus for  how security controls are applied to cloud-based technologies. Example GCP concepts include, but are not limited to:  

  • Architecture & Networking  

  • Identity & Access Management  

  • Securing the CI/CD Pipeline  

  • Secrets and Data Protection  

  • Logging, Detection, and Response  

  • Security Controls for Containers (e.g., Docker, Kubernetes)  

  • Experience managing GCP projects.   

  • Deep understanding and implementation of industry-leading practices for cloud security risks using frameworks and standards such as CIS Benchmarks, Cloud Security Alliance,  NIST SP 800-144, 800-145, 800-291, and 800-322.  

  • Experience advising customers on GCP architecture and design concepts based on compliance and regulatory standards (e.g., PII, PCI-DSS, PHI, GDPR, HIPAA).  

  • Understanding of a programming or scripting language and strong knowledge of scripting, programming or application programming interface (API) interaction methods. 

  • Governance and conveyance of security principles relevant to GCP architectures. 

  • Experience with Incident Response within GCP environments and hosted applications. 

Additional Qualifications:  

  • Prior training and public speaking engagement experience. 

  • Bachelor’s degree in a technical discipline (or equivalent work experience). 

  • Willingness to travel up to 25%. 

  • Experience in preparing architecture diagrams and writing whitepapers or reference guides., 

  • Certifications related to GCP or industry-standard cloud certifications. 

  • Proven ability and understanding of the components that comprise a successful cloud information security program. 

  • Knowledge of security best-practices for Google Workspace SaaS components. 

Additional Information

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire.

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. 

This is a regionally-based role that must be located in the East region of the United States

Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided


  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Full Telecommute

About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765