Job Description
Job Description
Overview
CTG is seeking a Principal Security Architect - GCP to serve as the security design authority for enterprise Google Cloud environments. This role owns secure-by-default architecture patterns, sets organization-wide guardrails, and ensures cloud and AI deployments meet security and compliance standards at scale.
Location: Miami, FL
Duration: 12 months
-
Act as the final security design authority for Google Cloud Platform (GCP), approving and governing cloud security architectures across the enterprise.
-
Lead security requirements, high-level design (HLD), and low-level design (LLD) for cloud solutions, establishing foundational security patterns and guardrails.
-
Author, maintain, and govern Secure Design Blueprints (SDBs) for GCP services, ensuring they are the definitive security standard for all teams.
-
Serve as the lead security architect for Generative AI deployments, including Gemini AI and Vertex AI, with a focus on data isolation, identity boundaries, and VPC Service Controls (VPC-SC).
-
Design and enforce organization-level security controls, including Organization Policy Constraints, IAM hierarchies, and identity boundaries, to support compliance at scale.
-
Provide architectural guidance for Cloud Security Posture Management (CSPM) initiatives, translating findings into improved security standards and patterns.
-
Ensure all cloud implementations align with approved security architectures, zero trust principles, and defense-in-depth strategies.
-
Partner closely with cloud, platform, and security teams to drive consistent adoption of security standards across large, multi-project GCP environments.
Required Skills
-
Expert-level experience with GCP security architecture and native security services.
-
Deep expertise in IAM design, VPC Service Controls (VPC-SC), Cloud Armor, and organization-level GCP policies.
-
Strong understanding of zero trust, defense-in-depth, and secure cloud architecture principles.
-
Proven ability to produce clear, actionable HLD and LLD documentation.
-
Experience analyzing CSPM results from an architectural perspective and turning them into durable security improvements.
Experience
-
8+ years in cybersecurity or information security.
-
5+ years focused on GCP architecture and cloud security design.
-
Demonstrated experience serving as a security design authority for large-scale, enterprise cloud environments.
Education & Certifications
-
Bachelor’s degree in Computer Science, Information Security, Engineering, or equivalent experience.
-
Google Cloud Professional Security Architect or Professional Cloud Security Engineer certification (or equivalent).
Excellent verbal and written English communication skills and the ability to interact professionally with a diverse group are required.
CTG does not accept unsolicited resumes from headhunters, recruitment agencies, or fee based recruitment services for this role.
To Apply:
To be considered, please apply directly to this requisition using the link provided. For additional information, please contact Laura Dominguez at Laura.Dominguez@ctg.com. Kindly forward this to any other interested parties. Thank you!