Senior Google Cloud Security Engineer
Wellspect HealthCare, Charlotte, NC, United States
Senior Google Cloud Security Engineer
Senior‑level individual contributor within Dentsply Sirona’s Security Architecture and Engineering organization.
This role partners closely with the Google Cloud Platform (GCP) engineering and operations teams and security stakeholders to design, implement, and continuously improve secure‑by‑default cloud foundations and security controls that enable business delivery while reducing risk.
Responsibilities and Scope:
Define and implement secure GCP reference architectures (landing zone, org/policy guardrails, identity, network segmentation, encryption, logging) and reusable security patterns.
Engineer preventive and detective controls using automation and infrastructure‑as‑code (guardrails, baselines, continuous configuration enforcement).
Coordinate with platform and application teams to integrate security into CI/CD pipelines and deployment workflows (including workload/container security).
Own SecOps SIEM administration and detection engineering: log onboarding, parsing
ormalization, rule development, tuning, dashboards, and alerting.
Drive cloud security risk reduction through security reviews, threat modeling, and remediation of critical findings across GCP services.
Contribute to audit readiness and control evidence for cloud controls (access management, logging, encryption, vulnerability management).
Cloud Security Architecture & Engineering:
Partner with the Google Cloud team to design secure cloud architectures (IAM/least privilege, network security, encryption, secrets management, logging/monitoring).
Define and maintain GCP security reference architectures and guardrails aligned to enterprise security policies and industry frameworks.
Lead threat modeling and architecture risk reviews for new GCP services, platforms, and major migrations; document decisions and required controls/compensations.
Security Engineering, Automation & DevSecOps:
Engineer scalable security controls using automation and infrastructure‑as‑code (baseline policies, configuration validation, continuous compliance checks).
Integrate security controls into CI/CD (policy checks, IaC validation, secrets detection, artifact/image scanning).
Develop reusable security modules, patterns, and documentation that drive consistent adoption across teams.
SecOps SIEM Ownership (Google Security Operations / Chronicle):
Administer and mature the SecOps SIEM platform: data ingestion, log onboarding, parsing
ormalization, content management, and access controls.
Lead detection engineering: build, tune, and maintain high‑fidelity detections and analytics based on threat intelligence and observed attacker techniques; reduce false positives through iterative tuning.
Develop dashboards and reporting to support SOC performance, cloud visibility, and executive‑level risk insights.
Partner with Incident Response/Threat Hunting/Cloud Engineering to investigate cloud events and improve telemetry and detections.
Risk Reduction, Compliance & Continuous Improvement:
Drive remediation of critical/high cloud findings by coordinating with owners, validating fixes, and ensuring controls remain effective over time.
Support internal and external audits by producing evidence for cloud control operation (logging, access governance, encryption, vulnerability management, change control).
Contribute to security standards, patterns, and runbooks; participate in lessons learned and resilience readiness improvements.
Success Measures (examples):
Increase GCP log coverage in the SIEM.
Improve detection quality (signal‑to‑noise ratio and timely deployment of new detections).
Reduce critical cloud security findings over time through guardrails, automation, and effective remediation.
Improve time‑to‑visibility for new GCP projects/workloads.
Deliver a secure‑by‑default GCP landing zone and standardized security blueprint adopted broadly.
Job Requirements
Education
Bachelor’s degree (or higher) in Cybersecurity, Computer Science, Information Systems, Engineering, or related field (or equivalent practical experience).
Experience
7+ years of professional experience in cybersecurity, including significant hands‑on experience in cloud security architecture and engineering.
3+ years securing Google Cloud Platform (GCP) environments across identity, network security, encryption, and logging/monitoring.
Hands‑on experience administering or engineering detections in a modern SIEM (Google Security Operations/Chronicle preferred; comparable SIEM acceptable).
Proven track record partnering with cloud platform teams and application teams to deliver security improvements through engineering, automation, and standards.
Key Skills & Knowledge
Strong grounding in cloud security architecture: least privilege, defense‑in‑depth, secure network design, encryption, and secure delivery practices.
Practical knowledge of GCP security capabilities (IAM, org/policy guardrails, security posture management concepts, logging/monitoring, key management/encryption).
Security automation and infrastructure‑as‑code experience (Terraform or equivalent) and scripting (Python or equivalent).
Detection engineering fundamentals: log onboarding, parsing
ormalization, query languages, alert tuning, and dashboarding.
Threat modeling, security review, and risk translation into pragmatic engineering requirements.
Strong communication and ability to coordinate across multiple technical teams.
Certifications Preferred
Google Professional Cloud Security Engineer.
CSSP and/or CISSP.
Relevant GIAC certifications aligned to cloud/IR/detection engineering or equivalent credentials.
Equal Employment Opportunity
Dentsply Sirona is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, disability, or protected Veteran status.
#J-18808-Ljbffr
Senior‑level individual contributor within Dentsply Sirona’s Security Architecture and Engineering organization.
This role partners closely with the Google Cloud Platform (GCP) engineering and operations teams and security stakeholders to design, implement, and continuously improve secure‑by‑default cloud foundations and security controls that enable business delivery while reducing risk.
Responsibilities and Scope:
Define and implement secure GCP reference architectures (landing zone, org/policy guardrails, identity, network segmentation, encryption, logging) and reusable security patterns.
Engineer preventive and detective controls using automation and infrastructure‑as‑code (guardrails, baselines, continuous configuration enforcement).
Coordinate with platform and application teams to integrate security into CI/CD pipelines and deployment workflows (including workload/container security).
Own SecOps SIEM administration and detection engineering: log onboarding, parsing
ormalization, rule development, tuning, dashboards, and alerting.
Drive cloud security risk reduction through security reviews, threat modeling, and remediation of critical findings across GCP services.
Contribute to audit readiness and control evidence for cloud controls (access management, logging, encryption, vulnerability management).
Cloud Security Architecture & Engineering:
Partner with the Google Cloud team to design secure cloud architectures (IAM/least privilege, network security, encryption, secrets management, logging/monitoring).
Define and maintain GCP security reference architectures and guardrails aligned to enterprise security policies and industry frameworks.
Lead threat modeling and architecture risk reviews for new GCP services, platforms, and major migrations; document decisions and required controls/compensations.
Security Engineering, Automation & DevSecOps:
Engineer scalable security controls using automation and infrastructure‑as‑code (baseline policies, configuration validation, continuous compliance checks).
Integrate security controls into CI/CD (policy checks, IaC validation, secrets detection, artifact/image scanning).
Develop reusable security modules, patterns, and documentation that drive consistent adoption across teams.
SecOps SIEM Ownership (Google Security Operations / Chronicle):
Administer and mature the SecOps SIEM platform: data ingestion, log onboarding, parsing
ormalization, content management, and access controls.
Lead detection engineering: build, tune, and maintain high‑fidelity detections and analytics based on threat intelligence and observed attacker techniques; reduce false positives through iterative tuning.
Develop dashboards and reporting to support SOC performance, cloud visibility, and executive‑level risk insights.
Partner with Incident Response/Threat Hunting/Cloud Engineering to investigate cloud events and improve telemetry and detections.
Risk Reduction, Compliance & Continuous Improvement:
Drive remediation of critical/high cloud findings by coordinating with owners, validating fixes, and ensuring controls remain effective over time.
Support internal and external audits by producing evidence for cloud control operation (logging, access governance, encryption, vulnerability management, change control).
Contribute to security standards, patterns, and runbooks; participate in lessons learned and resilience readiness improvements.
Success Measures (examples):
Increase GCP log coverage in the SIEM.
Improve detection quality (signal‑to‑noise ratio and timely deployment of new detections).
Reduce critical cloud security findings over time through guardrails, automation, and effective remediation.
Improve time‑to‑visibility for new GCP projects/workloads.
Deliver a secure‑by‑default GCP landing zone and standardized security blueprint adopted broadly.
Job Requirements
Education
Bachelor’s degree (or higher) in Cybersecurity, Computer Science, Information Systems, Engineering, or related field (or equivalent practical experience).
Experience
7+ years of professional experience in cybersecurity, including significant hands‑on experience in cloud security architecture and engineering.
3+ years securing Google Cloud Platform (GCP) environments across identity, network security, encryption, and logging/monitoring.
Hands‑on experience administering or engineering detections in a modern SIEM (Google Security Operations/Chronicle preferred; comparable SIEM acceptable).
Proven track record partnering with cloud platform teams and application teams to deliver security improvements through engineering, automation, and standards.
Key Skills & Knowledge
Strong grounding in cloud security architecture: least privilege, defense‑in‑depth, secure network design, encryption, and secure delivery practices.
Practical knowledge of GCP security capabilities (IAM, org/policy guardrails, security posture management concepts, logging/monitoring, key management/encryption).
Security automation and infrastructure‑as‑code experience (Terraform or equivalent) and scripting (Python or equivalent).
Detection engineering fundamentals: log onboarding, parsing
ormalization, query languages, alert tuning, and dashboarding.
Threat modeling, security review, and risk translation into pragmatic engineering requirements.
Strong communication and ability to coordinate across multiple technical teams.
Certifications Preferred
Google Professional Cloud Security Engineer.
CSSP and/or CISSP.
Relevant GIAC certifications aligned to cloud/IR/detection engineering or equivalent credentials.
Equal Employment Opportunity
Dentsply Sirona is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, disability, or protected Veteran status.
#J-18808-Ljbffr