Overview
We are looking for a highly skilled Senior GCP Cloud Engineer to design, implement, and manage scalable, secure, and highly available cloud infrastructure on Google Cloud Platform (GCP). The ideal candidate will take ownership of cloud architecture design, landing zones, network topology, HA/DR strategies, and cross-cloud networking, while enabling platform capabilities for data and application teams.
Job Description
Key Responsibilities:
Cloud Architecture & Design
• Gather requirements and translate them into scalable, secure GCP architectures
• Design and document landing zones, including:
-Project structure and hierarchy (folders/org setup)
-Network topology (hub-spoke/shared VPC)
-Security baselines and guardrails
• Define and implement High Availability (HA) and Disaster Recovery (DR) strategies
• Create reusable architecture diagrams, standards, and documentation
Networking & Multi-Cloud Design
• Design and implement GCP networking solutions, including hybrid and cross-cloud architectures
• Configure secure connectivity across environments:
-Interconnect / VPN
-Multi-region networking
-Cross-cloud integrations (AWS, Azure)
• Ensure network segmentation, isolation, and compliance with VPC-SC and firewall policies
Platform Engineering & Automation
• Build and manage infrastructure as code (IaC) using Terraform or similar tools
• Implement standardized platform services and reusable modules
• Enable self-service infrastructure provisioning
CI/CD & DevOps Enablement
• Design and implement CI/CD pipelines using Cloud Build / GitHub Actions
• Define container build, promotion, and deployment workflows
• Ensure proper artifact lifecycle management and governance
Security & Governance
• Implement IAM policies, service accounts, and least-privilege access
• Enforce organization-level policies and compliance controls
• Manage secrets using Secret Manager (secure access, rotation policies)
Observability & Reliability
• Implement monitoring, alerting, and logging frameworks
• Define SLOs, SLAs, and reliability metrics
• Enable log-based insights and dashboards
Data Platform Enablement
• Support data platform use cases using BigQuery, Composer, and event-driven systems
• Collaborate with data teams to optimize pipeline performance and architecture
External Skills And Expertise
Mandatory Technical Skills
• Networking
-VPC, Shared VPC, VPC Service Controls (VPC-SC)
-Cloud NAT, Firewall rules, Cloud DNS
-Interconnect (Dedicated/Partner)
• Identity & Access Management
-Service accounts, custom roles
-IAM policy bindings
-Organization-level governance policies
• Storage & Security
-Cloud Storage (IAM, lifecycle management, CMEK encryption)
-Secret Manager (versioning, rotation, cross-project access)
• Data & Orchestration
-Cloud Composer (Airflow):
DAG development
XComs, triggers, connections
-BigQuery (query optimization, access control)
• Monitoring & Logging
-Cloud Monitoring dashboards
-Uptime checks, alerts
-Log-based metrics
• CI/CD & Artifacts
-Cloud Build / GitHub Actions
-Artifact Registry / Container Registry
-Image lifecycle management & vulnerability scanning
• Infrastructure as Code
-Terraform (preferred), Deployment Manager (optional)
-Modular infrastructure design
Skills & Requirements
Cross-cloud connectivity patterns) -Certifications (GCP Professional Cloud Architect, -Good Understanding of Dataproc, node pools, Kafka) -API Security(Cloud Armor, Dataform and Dataplex -GKE(Private clusters, API Gateway) -Multi-cloud expertise(AWS PrivateLink or Azure networking equivalents, GCP Data Engineer, network policies) -Event-driven architecture(Pub/Sub, Apigee, GCP DevOps Engineer), Dataflow, Workload Identity, Networking, Identity & Access Management, Storage & Security, Data & Orchestration, Monitoring & Logging, CI/CD & Artifacts, Infrastructure as Code
Apply Now