GCP Cloud Architect
Apex Systems, Juno Beach, FL, United States
Job Title: Lead Security Architect - Google Cloud Platform (GCP)
Location:
Onsite required (Juno Beach, FL preferred)
Duration:
Through end of Q3 / early Q4 (with potential extension)
Engagement:
Advisory / Architecture (nonhandson)
About the Role
We are seeking a
Lead Security Architect - GCP
to serve as the enterprise's primary authority on secure cloud architecture for Google Cloud Platform. This is a high-impact, design-driven position responsible for defining the organization's secure GCP foundation, establishing enterprise guardrails, and creating security blueprints that will shape long-term cloud adoption.
This role is
architecture-focused (HLD + LLD)
- not a hands-on engineering position. You will guide secure-by-default cloud design, lead the architecture for Gemini AI adoption, and mentor internal teams as they build GCP proficiency.
Key Responsibilities
Security Architecture Leadership
Serve as the
lead design authority
for all secure GCP architecture decisions and patterns. Partner with cloud, networking, and security teams to guide secure deployment strategies across the enterprise. Secure Design Blueprints (SDBs)
Author, maintain, and govern
Secure Design Blueprints
for all GCP services. Translate enterprise security requirements into actionable HLD/LLD documentation. Generative AI Security (Gemini & Vertex AI)
Act as the
lead architect
for secure Gemini AI deployment. Design data isolation models, identity boundaries, and VPC Service Controls (VPCSC) to support safe AI adoption. Guardrails & Governance
Define and implement
organization-level policies , including Org Policy Constraints, IAM hierarchy design, and enterprise segmentation strategies. Establish secure landing zones and guardrail frameworks before scaling workloads. Cloud Security Posture Management (CSPM) Support
Analyze systemic CSPM findings and update SDBs to address architectural weaknesses. Provide strategic guidance, not daily monitoring. GCP Foundation Build
Design VPC topology, network segmentation, ingress/egress patterns, logging/monitoring frameworks, IAM strategy, and SSO integration. Support multi-region design, resiliency planning, secrets management, and DNS architecture. Mentorship & Collaboration
Mentor internal teams that are early in their GCP journey. Operate in an advisory model, influencing without direct engineering ownership. Key Qualifications
Required Experience
8+ years
in Cybersecurity. 5+ years
specifically dedicated to GCP security architecture at enterprise scale. Proven experience designing secure landing zones, guardrails, and enterprise architecture in GCP. Certification
Professional GCP Security Architect or Engineer certification
(required). Technical Expertise
Deep knowledge of:
VPC Service Controls (VPCSC) IAM & complex organizational hierarchies Cloud Armor GCP-native security tools & architecture patterns Secure AI/ML architecture (Gemini, Vertex AI)
Strong understanding of AWS security frameworks (preferred for crosscloud alignment). Familiarity with Terraform or CloudFormation (no coding required). Documentation & Architecture
Strong ability to create
HLD, LLD, SDBs, and enterprise architecture documentation . Excellent communication and consultative skills with the ability to influence across teams. Environment & Context
Organization is maturing its GCP capabilities from early-stage (crawl phase). AWS program is already established; GCP may mirror or diverge from that model. Internal teams are still developing GCP skills - this role will be key in mentoring and guiding them. Heavy collaboration with Cloud, Network, and Security Engineering teams. Competitive vendor landscape; high visibility across the organization. What You'll Deliver
A
secure-by-design enterprise GCP foundation Governance and guardrails that scale Secure design patterns for foundational GCP services Security architecture for Gemini AI and future AI workloads Long-term blueprinting for cloud operating models Architectural leadership that accelerates safe enterprise cloud adoption
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click here for more details.
Apex Benefits Overview:
Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Location:
Onsite required (Juno Beach, FL preferred)
Duration:
Through end of Q3 / early Q4 (with potential extension)
Engagement:
Advisory / Architecture (nonhandson)
About the Role
We are seeking a
Lead Security Architect - GCP
to serve as the enterprise's primary authority on secure cloud architecture for Google Cloud Platform. This is a high-impact, design-driven position responsible for defining the organization's secure GCP foundation, establishing enterprise guardrails, and creating security blueprints that will shape long-term cloud adoption.
This role is
architecture-focused (HLD + LLD)
- not a hands-on engineering position. You will guide secure-by-default cloud design, lead the architecture for Gemini AI adoption, and mentor internal teams as they build GCP proficiency.
Key Responsibilities
Security Architecture Leadership
Serve as the
lead design authority
for all secure GCP architecture decisions and patterns. Partner with cloud, networking, and security teams to guide secure deployment strategies across the enterprise. Secure Design Blueprints (SDBs)
Author, maintain, and govern
Secure Design Blueprints
for all GCP services. Translate enterprise security requirements into actionable HLD/LLD documentation. Generative AI Security (Gemini & Vertex AI)
Act as the
lead architect
for secure Gemini AI deployment. Design data isolation models, identity boundaries, and VPC Service Controls (VPCSC) to support safe AI adoption. Guardrails & Governance
Define and implement
organization-level policies , including Org Policy Constraints, IAM hierarchy design, and enterprise segmentation strategies. Establish secure landing zones and guardrail frameworks before scaling workloads. Cloud Security Posture Management (CSPM) Support
Analyze systemic CSPM findings and update SDBs to address architectural weaknesses. Provide strategic guidance, not daily monitoring. GCP Foundation Build
Design VPC topology, network segmentation, ingress/egress patterns, logging/monitoring frameworks, IAM strategy, and SSO integration. Support multi-region design, resiliency planning, secrets management, and DNS architecture. Mentorship & Collaboration
Mentor internal teams that are early in their GCP journey. Operate in an advisory model, influencing without direct engineering ownership. Key Qualifications
Required Experience
8+ years
in Cybersecurity. 5+ years
specifically dedicated to GCP security architecture at enterprise scale. Proven experience designing secure landing zones, guardrails, and enterprise architecture in GCP. Certification
Professional GCP Security Architect or Engineer certification
(required). Technical Expertise
Deep knowledge of:
VPC Service Controls (VPCSC) IAM & complex organizational hierarchies Cloud Armor GCP-native security tools & architecture patterns Secure AI/ML architecture (Gemini, Vertex AI)
Strong understanding of AWS security frameworks (preferred for crosscloud alignment). Familiarity with Terraform or CloudFormation (no coding required). Documentation & Architecture
Strong ability to create
HLD, LLD, SDBs, and enterprise architecture documentation . Excellent communication and consultative skills with the ability to influence across teams. Environment & Context
Organization is maturing its GCP capabilities from early-stage (crawl phase). AWS program is already established; GCP may mirror or diverge from that model. Internal teams are still developing GCP skills - this role will be key in mentoring and guiding them. Heavy collaboration with Cloud, Network, and Security Engineering teams. Competitive vendor landscape; high visibility across the organization. What You'll Deliver
A
secure-by-design enterprise GCP foundation Governance and guardrails that scale Secure design patterns for foundational GCP services Security architecture for Gemini AI and future AI workloads Long-term blueprinting for cloud operating models Architectural leadership that accelerates safe enterprise cloud adoption
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click here for more details.
Apex Benefits Overview:
Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.