Compunnel, Inc.
We are seeking an experienced Cloud Security Engineer specializing in cloud network security to architect and implement secure infrastructure in Google Cloud Platform (GCP).
This role focuses on deploying and managing FortiGate-VM and cloud-native firewalls, automating security controls, and ensuring compliance across hybrid environments.
The ideal candidate will have strong expertise in GCP networking, Fortinet products, infrastructure-as-code tools, and cloud security best practices.
Key Responsibilities
Design & Architecture: Architect secure cloud network infrastructure on GCP, including segmentation of virtual networks to protect applications and data. Implementation & Deployment: Deploy and configure FortiGate-VM instances and cloud-native firewalls (FWaaS) within GCP environments. Automation: Develop automated security solutions using infrastructure-as-code tools (e.g., Terraform) and CI/CD pipelines for consistent deployments. Configuration & Management: Configure firewall policies, routing, VPNs, and security features across hybrid environments. Threat Mitigation: Utilize FortiGuard threat intelligence and GCP security offerings to protect against malware, botnets, and zero-day attacks. Monitoring & Incident Response: Monitor cloud environments for security risks, analyze logs, and respond to incidents. Compliance & Auditing: Ensure adherence to industry standards and perform security audits and vulnerability assessments. Collaboration: Act as a subject matter expert, providing technical guidance on security best practices to internal and external stakeholders. Required Qualifications
Strong knowledge of GCP networking and security services. Hands-on experience with Fortinet products, including FortiGate-VM and FortiGate-CNF. Proficiency with infrastructure-as-code tools (Terraform, Ansible). Experience with network security concepts and protocols (TCP/IP, DNS, BGP, OSPF, VPNs). Familiarity with DevOps, Agile methodologies, and CI/CD pipelines. Understanding of containerization technologies (e.g., Kubernetes) and their security implications. Scripting experience (Python preferred). Strong understanding of cloud-native security principles and best practices. Preferred Qualifications
Experience with hybrid cloud integration strategies. Exposure to advanced threat detection and response tools.
#J-18808-Ljbffr
Design & Architecture: Architect secure cloud network infrastructure on GCP, including segmentation of virtual networks to protect applications and data. Implementation & Deployment: Deploy and configure FortiGate-VM instances and cloud-native firewalls (FWaaS) within GCP environments. Automation: Develop automated security solutions using infrastructure-as-code tools (e.g., Terraform) and CI/CD pipelines for consistent deployments. Configuration & Management: Configure firewall policies, routing, VPNs, and security features across hybrid environments. Threat Mitigation: Utilize FortiGuard threat intelligence and GCP security offerings to protect against malware, botnets, and zero-day attacks. Monitoring & Incident Response: Monitor cloud environments for security risks, analyze logs, and respond to incidents. Compliance & Auditing: Ensure adherence to industry standards and perform security audits and vulnerability assessments. Collaboration: Act as a subject matter expert, providing technical guidance on security best practices to internal and external stakeholders. Required Qualifications
Strong knowledge of GCP networking and security services. Hands-on experience with Fortinet products, including FortiGate-VM and FortiGate-CNF. Proficiency with infrastructure-as-code tools (Terraform, Ansible). Experience with network security concepts and protocols (TCP/IP, DNS, BGP, OSPF, VPNs). Familiarity with DevOps, Agile methodologies, and CI/CD pipelines. Understanding of containerization technologies (e.g., Kubernetes) and their security implications. Scripting experience (Python preferred). Strong understanding of cloud-native security principles and best practices. Preferred Qualifications
Experience with hybrid cloud integration strategies. Exposure to advanced threat detection and response tools.
#J-18808-Ljbffr