Overview

We are looking for a Senior Cloud Engineer to join our team.

In this role, you will work on designing and securing cloud infrastructure for complex, enterprise-scale environments. You will collaborate with cross-functional teams to deliver robust, compliant, and innovative cloud solutions that support business objectives.

Responsibilities

  • Design and architect secure cloud infrastructure to meet organizational needs
  • Implement and manage cloud security policies and services, focusing on best practices and compliance
  • Conduct security threat analysis and develop mitigation strategies to protect cloud environments
  • Define and enforce security strategies and governance requirements across cloud platforms
  • Collaborate with SOC and SecOps teams to support regulatory compliance and audit readiness
  • Manage Identity and Access Management (IAM), including resource hierarchies, boundary protection, and secure communications
  • Design and implement network security defenses such as firewalls, VPCs, and perimeter controls
  • Utilize observability tools for logging, monitoring, and threat detection in cloud environments
  • Leverage AI agents to automate and streamline security and infrastructure deployment tasks
  • Drive security-focused digital transformation using Infrastructure as Code (IaC) and orchestrate secure containerized workloads

Requirements

  • At least 3 years of hands-on experience in cloud engineering or a related field
  • Experience architecting and implementing secure policies and services, preferably on Google Cloud Platform (GCP)
  • Expertise in security threat analysis and mitigation, with hands-on experience using SIEM tools such as Google SecOps (Chronicle), WiZ, or similar
  • Proven ability to define, design, and implement security strategies and governance frameworks
  • Experience enforcing regulatory controls and collaborating with SOC or SecOps teams to meet compliance requirements
  • Advanced skills in Identity and Access Management (IAM), including resource hierarchy design, boundary protection, secure communications, and Workload Identity Federation (WIF)
  • Proficiency in designing and implementing network security defenses, including Cloud Firewall, Cloud Armor, and VPC, as well as ensuring data protection and observability for threat management
  • Experience leveraging AI agents to automate, accelerate, and de-risk security and infrastructure deployments
  • Expertise in setting up secure Landing Zones, Data and AI Foundations, and establishing secure communication perimeters for users, agents, and services
  • Skilled in using Infrastructure as Code (e.g., Terraform) for compliance-driven deployment, orchestrating secure workloads with Google Kubernetes Engine (GKE), and securing CI/CD and DevSecOps pipelines
  • Fluent English skills (written and spoken) at a B2+ level or higher

[GTS] Benefits (generic, except India)

  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Healthcare benefits
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn