UST, formerly known as UST Global, is a provider of digital technology and transformation, information technology, and services, headquartered in Aliso Viejo, California, United States. Stephen Ross founded UST in 1998 in Laguna Hills. The company has offices in the Americas, EMEA, APAC, and India.
Key Responsibilities:
Design and implement security solutions for Google Cloud Platform (GCP) environments.
Conduct security assessments and audits of GCP infrastructure, applications, and services to identify security risks and compliance gaps.
Implement security controls and configurations for GCP services, including identity and access management (IAM), network security, encryption, and data protection.
Monitor and analyze security events and incidents in GCP environments.
Stay updated on emerging security threats, vulnerabilities, and technologies in cloud computing and GCP.
Collaborate with engineering teams to integrate security requirements into the software development lifecycle (SDLC) and DevOps processes.
Offer security guidance and support to development teams on secure coding practices, threat modeling, and vulnerability management.
Experience:
Over 10 years of experience, with 4+ years in the Lead Security Engineer, Security Architect, or similar role, and 2+ years of hands-on experience with the Google Cloud Platform technology stack.
Proven experience with GCP security services (e.g., IAM, Cloud SCC, Cloud KMS), Security and compliance standards (NIST, ISO 27xxx, SOC2, data privacy regulations).
Solid understanding of Data security (encryption, masking, tokenization, etc.) and Secure SDLC (SAST, DAST, IAST, container security, etc.).
Expert Knowledge of Identity management (SSO, MFA, etc.) and Network security (e.g., VPC, firewall, Cloud Armor).
Experience in Incident management (Chronicle Security Operations or similar).
Strong understanding in Containerization and orchestration (e.g., Docker, containerd, Kubernetes).
Good knowledge of GCP services such as Compute Engine, App Engine, GKE, BigQuery, Cloud Storage, and Composer.
Knowledge of DevOps and SRE practices including CI/CD (Cloud Build, Cloud Deploy, GitLab, Jenkins) and IaC (Terraform, Ansible), Observability tools such as ELK stack, Grafana, Prometheus, GCP Cloud's operations suite etc.
GCP Professional Cloud Security Engineer certification is highly desired.
Excellent problem-solving and analytical capabilities.
GCP, IAM, Security and compliance standards