GCP Security Architect

GCP Security Architect (Remote / Hybrid | Immediate Start)

We are HCLTech , one of the fastest-growing large tech companies in the world and home to 225,000+ people across 60 countries, supercharging progress through industry-leading capabilities centered around Digital, Engineering and Cloud. The driving force behind that work, our people, are diverse, creative, and passionate, raising the bar for excellence on a regular basis. We, in turn, work hard to bring out the best in them as we strive to help them find their spark and become the best version of themselves that they can be. If all this sounds like an environment you’ll thrive in, then you’re in the right place. Join us on our journey in advancing the technological world through innovation and creativity.

We’re looking for a Senior GCP Security Architect to drive Cloud Security Posture Reviews (CSPR) , implement GCP-native security controls , and embed DevSecOps practices in highly regulated environments.

About the Role

As a GCP Security Architect, you’ll work closely with client CISOs, security engineers, and compliance teams to design and implement secure, scalable, and compliant cloud environments. You’ll lead architecture reviews, define DevSecOps pipelines, and ensure alignment with EU and German regulatory frameworks.

Key Responsibilities

• Lead Cloud Security Posture Reviews (CSPR) and architecture assessments for enterprise clients.
• Design and implement GCP-native security architectures (IAM, VPC Service Controls, encryption, DLP, firewalls).
• Define and deploy DevSecOps pipelines with integrated security checks (e.g., binary scanning, secrets management).
• Collaborate with client security and compliance teams to align cloud strategies with risk frameworks.
• Implement zero trust architectures using BeyondCorp, context-aware access, and service identity.
• Leverage GCP services like Security Command Center, Cloud Armor, Workload Identity , and Confidential Computing .
• Ensure compliance with GDPR, BSI IT-Grundschutz , and other EU regulations.

Minimum Qualifications

• Bachelor’s degree in Information Security, Computer Science, or related field.
• 12+ years in cloud security, architecture, or cybersecurity consulting, 5+ years hands-on experience with GCP security services .
• Proven expertise in DevSecOps and CI / CD security integration.
• Strong scripting skills (Python, Go, Bash) and IaC experience (Terraform).
• Deep understanding of network security (VPNs, firewalls, DNS, load balancing).
• Familiarity with frameworks like NIST, MITRE ATT&CK, OWASP Top 10 .
• Fluent in English (written and verbal), German knowledge is a plus.
• Certification required : Google Professional Cloud Security Engineer or equivalent (e.g., CISSP, CISM, CCSK).

Preferred Qualifications

• Knowledge of German / EU compliance frameworks (e.g., KRITIS, BSI).
• Experience with multi-cloud or hybrid security architectures .
• Hands-on with tools like Forseti, OPA / Gatekeeper, Vault, Security Health Analytics .
• Strong communication and stakeholder engagement skills.

We promote equal opportunities for all employees, regardless of their cultural and social background, gender, disability, age, religion, beliefs, and sexual identity. We give priority consideration to severely disabled applicants and those of equal status in the case of equal suitability.