Cloud Security Architect

GFT is a digital transformation pioneer that develops sustainable solutions based on new technologies including artificial intelligence and blockchain/DLT. GFT experts create and implement scalable software applications that make access to innovative business models safe and easy. 

We are looking for a Cloud Security Architects. We are looking for an enthusiastic and dynamic person willing to grow in a multi-cultural, motivating and challenging environment.

Your main responsabilities:

- Wide knowledge and solid base of IT Security principles that can be applicable across all SDLC phases. Skilled in identifying security aspects that can be automated and tested integrated into the SDLC in order to obtain a safer and more efficient SDLC.
- Deep undestanding of cloud models and cloud security principles in general
- Good general knowledge in Google Cloud (GCP)
- Good Google Cloud (GCP) security knowledge
- Ability to identify and indicate aspects of IT Security that can be integrated into SDLC in many layers / phases. Examples: Infrastructure Security guardrails integrated with CI (Policy / Security as Code), application security testing, Security Posture & compliance integrated in CI, Containers and VM static analysis, security protection of workloads such as containers and VM runtime analysis, security of the own devOps / devSecOps tooling, etc.
- Ability to identify specific guardrails to be implemented in GCP and how integrate them automated (when possible) in the SDLC
- Candidate will be very hands-on and will show deep knowledge in terms of proposing solutions and tooling to achieve the aforemetioned goals. Expertise with Terraform is a must. Knowledge in any of the following tools such as OPA (Open Policy Agent) or OPA-based frameworks such as Fugue Regula, Chef In Spec, Hashicorp Sentinel following Policy-as-Code approach will be required. Tools for safe container registry and static containers / images scanning (Google Container Analysis and other), tools for runtime analysis such as Falco or full-fledged CWPP platforms such as Prisma Cloud or Trend micro would be well valued.
 

Skills will help you succed:

- Candidate will require strong communication skills and ability to discuss in very technical forums as they will need to advice, lead and agree with the customer and also lead and support DevSecOps technical teams.

- Experience in: Cloud Security, Google Cloud Platform, DevOps Tools, Security and/ or Security Testing.
- Fluent english for business

Soft skills

- Good communication skills and used to deal with clients

- Team player

- Autonomy / self-organization

Our offer: 

• Competitive salary 

  Restaurant tickets and life insurance for every employee 
• The possibility of Working from Home 
• Flexible compensation plan, according to your needs 
• Customized plan for professional development and training program 
• Technical certifications 
• Subsidized English / German / Spanish courses 
• Flexible working hours and short Fridays 
• Program to improve and promote a healthy lifestyle at work: a sports program and fresh fruit in the offices 
• International work culture 
• Discount with Gympass 

At GFT we consider diversity as one of our main pillars and we foster an inclusive work environment based on cooperation and mutual respect.  We offer equal opportunities for everyone regardless of race, cultural background, gender, age, sexual orientation, gender identity, disability or religious beliefs. GFT has drafted and registered an Equality Plan that outlines the measures to be taken with the aim of achieving equal treatment and opportunities between women and men within the company, and eliminating, if present, discrimination based on gender.

Join our global team!