GCP Security Architect

ENDAVA AT A GLANCE  We are a global public technology company with over 23 years of experience working with some of the biggest global names in payments, banking, financial services, insurance, media, technology, and more. Through Digital Evolution, Agile Transformation, and Automation solutions, Endava helps its clients be more engaging, responsive, and efficient by supporting them from ideation to production. We exist to create an environment and a culture that breeds success by caring for our customers as individuals and enabling our people to be the best that they can be.   Endava has 11,742 employees, as of March 31, 2023, located in close to client locations in Australia, Austria, Canada, Denmark, Germany, Ireland, Netherlands, Singapore, Switzerland, United Arab Emirates, the United Kingdom, and the United States, and nearshore delivery centers in the European Union: Bulgaria, Croatia, Poland, Romania, and Slovenia; Central European Countries: Bosnia & Herzegovina, Moldova, North Macedonia, and Serbia; Latin America: Argentina, Colombia, Mexico, and Uruguay; Asia Pacific: Malaysia and Vietnam.  
Not only are we committed to nurturing long-term customer relationships, Endava recognizes the importance of providing rewarding and challenging careers for our people and, by doing so, we have established ourselves as a great place to work. At Endava we value career growth and expansion. You will have various opportunities to grow into the career you desire. We offer mentorship programs and multiple career tracks to help you achieve your personal and professional goals. 
WHAT ARE WE LOOKING FOR? Our Endava family is growing! We are seeking a GCP Security Architect to join our Infrastructure team. As a GCP Security Architect at Endava, you will have at least 10 years of experience in the information security and cloud infrastructure industry, with a strong understanding of the Google Cloud Platform.  As a GCP Security Architect, you will work on enterprise-level cybersecurity projects, managing and executing cloud security solutions across lifecycle strategy, design, implementation, and operations.  You will design, implement, deliver, and maintain security cloud infrastructure on the Google Cloud Platform to ensure that the cloud environment is protected against various security threats and complies with industry standards and regulations.

Responsibilities:

• Implement and maintain a robust enterprise-level cybersecurity framework to ensure the protection and integrity of GCP cloud-based systems. 
• Manage and execute comprehensive cloud security solutions throughout their lifecycle, from strategy and design to implementation and operations. 
• Collaborate with cross-functional teams to support multiple projects, ensuring seamless integration and alignment with business objectives. 
• Provide mentorship and leadership to team members, fostering a culture of continuous learning and professional development. 

Required Skills & Qualifications:

• Bachelor's Degree or equivalent experience. 
• Minimum10 years of relevant experience. 
• Technology, Cloud, and Security expertise. 
• Knowledge of industry standards in the information security /cloud infrastructure area (such as ISO 27000 series, NIST, CSF, and CSA). 
• Deep understanding of security aspects in the implementation and operation of recent cloud technologies (service mesh, microservices, Kubernetes etc.). 
• Experience with GCP (other CSPsi.e. Azure, AWS would be beneficial) and respective cloud-native security services and controls. 
• Experience in designing, implementing, and delivering security for cloud-native, distributed computing, and architectural solutions with a principle of “Secure by Design.” 
• Expertise in generating Threat Models, designing technical security measures for protecting highly sensitive workloads/application. 
• Experience implementing overall security controls, guardrails, and framework for Google Cloud Platform. 
• Setting up of secret management systems (hashicorp vault, secret manager). 
• Experience in setting up and managing security and controls on Kubernetes, service mesh, and hybrid cloud. 
• Experience in setting up security with CI/CD and associated tools for code scanning, image scanning, etc. 
• Experience to develop policy as code. 
• Review and audit existing setups for security across infrastructure, application, data, and Paas solutions. 
• Good Python scripting experience. 
• Good knowledge of OWASP vulnerabilities. 
• Ability to translate and present complex technological concepts to CxO audience. 
• Experience with performing technical demo’s & running workshops. 
• Comfortable with Public Speaking / presenting to small and large audiences. 

Endava Benefits:  We have a great Benefits Package! -Opportunity to work in an exciting and growing high-tech Global Organization -Career Development opportunities -Work/Life balance is the heart of culture  -Like to Travel? Great! We have over 51 offices in 49 cities, within 24 different countries  -Endava provides competitive full salary packages -Personal and Professional growth with continued training opportunities -Robust healthcare, benefits, and investment options-Employee Assistance Programs -Wellness Benefit 
We are an equal opportunity employer and are committed to a diverse workforce. We are committed to a policy of equal employment and will not discriminate against an applicant based on their age, sex, sexual orientation, gender identity, race, color, creed, religion, national origin or ancestry, citizenship, marital status, familial status, people with physical or mental disabilities, pregnancy or any other category protected under the laws we operate under.