Cloud Security Program Manager

Everything is possible with the right people

In4ge jest firmą rekrutacyjną, w której wierzymy, że wszystko jest możliwe dzięki odpowiednim ludziom. Naszym celem jest połączenie najbardziej utalentowanych pracowników z odpowiednimi firmami, tworząc synergiczne relacje, które przyczyniają się do wzrostu i sukcesu każdej ze stron. Uważamy, że prawdziwą wartość stanowią ludzie pracujący wspólnie w atmosferze wzajemnego szacunku i zaufania.

We are looking for a Cloud Security Program Manager to lead complex security transformation initiatives across cloud-native environments, with a strong focus on Google Cloud Platform (GCP). This high-impact role is central to embedding security into cloud architectures and CI/CD pipelines, particularly within regulated sectors.

You will drive strategic security programs that align enterprise goals with best-in-class practices in cloud governance, infrastructure security, and DevSecOps. You will work with multidisciplinary teams and senior stakeholders to shape secure-by-design solutions and improve security posture across the organization.

Responsibilities

• Lead the design and execution of large-scale SecOps and DevSecOps transformation programs in cloud environments

• Define and implement security strategies aligned with GCP architecture and public sector compliance standards

• Integrate security controls into CI/CD workflows and DevOps practices

• Deploy and optimize GCP-native security tools such as IAM, VPC Service Controls, Cloud Armor, KMS, and Security Command Center

• Collaborate with cross-functional teams to drive secure infrastructure and application design

• Use Infrastructure as Code (Terraform) to enforce security and configuration consistency

• Establish automated compliance monitoring, threat detection, and vulnerability management

• Support incident response and forensic investigations in GCP-based systems

• Align programs with frameworks such as NIST, MITRE ATT&CK, and OWASP Top 10

• Promote container and service mesh security best practices (e.g., GKE, Istio)

• Champion SIEM/SOAR adoption (e.g., Chronicle, Splunk, Sentinel) and security scorecards

Requirements

• 5+ years of experience in cloud security engineering, with hands-on GCP expertise

• Strong knowledge of DevSecOps practices and secure CI/CD integration

• Experience with GCP security services: IAM, VPC-SC, Cloud Armor, KMS, SCC

• Practical scripting skills (Python, Bash, Go) for automation and security tooling

• Familiarity with IaC tools (Terraform)

• Deep understanding of network security in cloud environments (firewalls, VPN, DNS, load balancing)

• Knowledge of security standards: NIST, MITRE ATT&CK, OWASP Top 10

• Proven track record leading security programs in complex or regulated settings

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)

• Certifications: PMP, PgMP, TOGAF, or similar, plus security-focused credentials

Nice to have

• Google Cloud Professional Cloud Security Engineer certification

• Experience with SIEM/SOAR platforms (e.g., Chronicle, Splunk, Sentinel)

• Knowledge of container security and service mesh (GKE, Istio)

• Familiarity with threat detection using behavioral analytics or ML

• Background in compliance automation and security reporting

• Experience in regulated industries (e.g., public sector, finance, healthcare)

We offer

• Fully remote work with flexible working hours -  EMEA Timezone.

• Long-term collaboration on B2B contract.

• Opportunity to work on complex cloud projects for international clients.

• Professional growth in a highly skilled and supportive team.

• Collaborative and open working culture.

💡 Don’t miss out on tailored opportunities!

We have many ongoing recruitments, and new projects are constantly coming in. By giving your consent to process your data for future recruitment processes, we’ll be able to invite you to roles that match your experience and expectations!

PS: We’ll only reach out to you when we have projects that might genuinely interest you — without your consent, we won’t be able to do that.

Our recruitment process is transparent and focused on finding the right candidate for our clients. When you apply, you can count on our objectivity, respect, and full professionalism.

We look forward to receiving your CV.

We connect you with the right people.