[Remote] Senior/ Staff Cloud DevSecOps / IaC Engineer (Google Cloud Platform)
Note: The job is a remote job and is open to candidates in USA. Holocron Security Inc. is the authoritative security and compliance control plane for modern, software-defined environments. They are seeking a Senior/Staff Cloud DevSecOps/IaC Engineer specializing in Google Cloud Platform to design, implement, and manage infrastructure as code solutions while ensuring secure deployment pipelines.
Responsibilities
ā¢ Implement GCP Terraform modules that mirror existing AWS patterns and contracts (same intent, comparable interfaces)
ā¢ Build baseline GCP org/project posture: IAM, org policies, audit logging, encryption/KMS, network segmentation, and secure service access
ā¢ Engineer secure-by-default network patterns: VPC design, private access, egress control, service perimeters (where appropriate), and least-privilege service identities
ā¢ Integrate IaC into CI pipelines with plan/apply gates, testing, drift detection, and multi-environment promotion
ā¢ Drive GCP-specific operational excellence: quotas/limits, IAM complexity, shared VPC patterns, and logging/audit trails
ā¢ Collaborate with platform/security to encode control intent into guardrails (org policies, pipeline rules, IaC standards)
Skills
ā¢ 5+ years in cloud infrastructure engineering; 3+ years strong GCP production experience
ā¢ Strong Terraform background (modules, state, environment strategy, reusable patterns)
ā¢ Deep knowledge of GCP IAM/service accounts, VPC networking, Cloud Audit Logs, Cloud KMS, and project/org structure
ā¢ Experience building IaC CI/CD pipelines and operating multi-environment deployments
ā¢ Security engineering mindset: least privilege, network isolation, auditability, keys/secrets hygiene
ā¢ Regulated environment experience (DoD/IC, FedRAMP-like, or comparable)
ā¢ GCP org policy / constraints expertise; service perimeter patterns (e.g., VPC Service Controls) where relevant
ā¢ GKE experience (private clusters, workload identity, hardened configs)
ā¢ Policy-as-code (OPA/Conftest/Sentinel) and secure Terraform supply chain practices
ā¢ Experience with constrained networks / disconnected operations
Benefits
ā¢ Equity
ā¢ Remote-first, high-trust engineering culture
ā¢ Work focused on real security + automation outcomes, not slideware
Company Overview
ā¢ Security and compliance truth, decided. Not debated. Holocron is the authoritative security and compliance control plane. It was founded in 2025, and is headquartered in Honolulu, Hawaii, USA, with a workforce of 11-50 employees. Its website is https://holocronsecurity.com/.
Apply Now
Apply Now
Responsibilities
ā¢ Implement GCP Terraform modules that mirror existing AWS patterns and contracts (same intent, comparable interfaces)
ā¢ Build baseline GCP org/project posture: IAM, org policies, audit logging, encryption/KMS, network segmentation, and secure service access
ā¢ Engineer secure-by-default network patterns: VPC design, private access, egress control, service perimeters (where appropriate), and least-privilege service identities
ā¢ Integrate IaC into CI pipelines with plan/apply gates, testing, drift detection, and multi-environment promotion
ā¢ Drive GCP-specific operational excellence: quotas/limits, IAM complexity, shared VPC patterns, and logging/audit trails
ā¢ Collaborate with platform/security to encode control intent into guardrails (org policies, pipeline rules, IaC standards)
Skills
ā¢ 5+ years in cloud infrastructure engineering; 3+ years strong GCP production experience
ā¢ Strong Terraform background (modules, state, environment strategy, reusable patterns)
ā¢ Deep knowledge of GCP IAM/service accounts, VPC networking, Cloud Audit Logs, Cloud KMS, and project/org structure
ā¢ Experience building IaC CI/CD pipelines and operating multi-environment deployments
ā¢ Security engineering mindset: least privilege, network isolation, auditability, keys/secrets hygiene
ā¢ Regulated environment experience (DoD/IC, FedRAMP-like, or comparable)
ā¢ GCP org policy / constraints expertise; service perimeter patterns (e.g., VPC Service Controls) where relevant
ā¢ GKE experience (private clusters, workload identity, hardened configs)
ā¢ Policy-as-code (OPA/Conftest/Sentinel) and secure Terraform supply chain practices
ā¢ Experience with constrained networks / disconnected operations
Benefits
ā¢ Equity
ā¢ Remote-first, high-trust engineering culture
ā¢ Work focused on real security + automation outcomes, not slideware
Company Overview
ā¢ Security and compliance truth, decided. Not debated. Holocron is the authoritative security and compliance control plane. It was founded in 2025, and is headquartered in Honolulu, Hawaii, USA, with a workforce of 11-50 employees. Its website is https://holocronsecurity.com/.
Apply Now
Apply Now