Senior GCP Security Engineer

OpenKyber LLC
28 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Remote

Tech stack

Amazon Web Services (AWS)
Azure
Cloud Computing
Computer Security
Information Systems Security Architecture Professional
Open Web Application Security
Secure Coding
Software Vulnerability Management
Google Cloud Platform
Cloud Platform System
Software Security
Information Technology
Static Application Security Testing
Vulnerability Analysis
Dynamic Application Security Testing

Job description

  • Assess existing security architecture and practices for digital and cloud environments, identifying gaps and improvement areas.
  • Define and recommend integration strategies with IT systems and broader enterprise ecosystems.
  • Develop and drive regulatory compliance roadmaps, including standards such as ISO, SOC 2 Type II, and SOC 3.
  • Support onboarding of hospitals and clinics into the Medtronic portal and digital ecosystem by ensuring adherence to security requirements.
  • Identify common compliance-related queries from healthcare providers (HCPs) and design automated response mechanisms.
  • Perform threat modeling and risk assessments for digital and cloud platforms.
  • Conduct vulnerability assessments, including signal monitoring and risk identification.
  • Implement and align cybersecurity standards and frameworks such as NIST, SOC 2, GDPR, and ISO.
  • Design and maintain secure architecture for digital and cloud ecosystems.
  • Manage security risk assessment and vulnerability management processes.
  • Support customer security requirements, including responding to compliance questionnaires, providing demonstrations, and integrating security controls.

Requirements

Do you have experience in Vulnerability assessment?, Do you have a Master's degree?, * Application Security (SAST, DAST, Secure Coding) - Expert, hands-on experience required

  • OWASP Tools & Practices - Expert, strong knowledge of OWASP Top 10
  • NIST Security Framework - Expert, implementation & compliance experience

Preferred Skills

  • Experience with healthcare or medical device industry security requirements
  • Familiarity with cloud platforms (Azure, AWS, Google Cloud Platform) security architecture
  • Strong understanding of GDPR and data privacy regulations
  • Excellent communication and stakeholder management skills

Qualifications

  • Bachelor&s or Master&s degree in Computer Science, Information Security, or related field
  • Relevant certifications such as CISSP, CISM, CEH, or equivalent are preferred

Apply for this position