Aditi is seeking a Cyber Security Engineer with deep expertise in Google Cloud Platform (GCP) security and Identity & Access Management (IAM) to support a high‑visibility initiative focused on securely exposing sensitive data for analytics and user‑level loan‑risk dashboards. This role is critical in ensuring end‑to‑end data protection—from ingestion and asynchronous processing to dashboard consumption—while maintaining strict compliance standards and minimizing enterprise risk. You will work closely with engineering, analytics, and compliance teams to deliver secure, scalable, and compliant cloud architectures. Responsibilities Security Design & Architecture Perform security architecture reviews for data pipelines, APIs, cloud workloads, and dashboards Define and enforce secure patterns for asynchronous and event‑driven architectures (Pub/Sub, service‑to‑service communication) Guide engineering teams in implementing secure‑by‑design controls across GCP platforms Data Security & Enablement Lead secure database enablement and data exposure for analytics and risk stakeholders Implement data protection controls including encryption, tokenization, IAM‑based segmentation, and auditing Ensure secure delivery of loan‑risk dashboards and sensitive user‑level insights IAM & Access Controls Conduct IAM validation across users, service accounts, workloads, and dashboards Enforce least‑privilege access, RBAC policies, Security Command Center (SCC), and continuous access governance Support authentication and authorization models across microservices and data systems Threat, Vulnerability & Compliance Support penetration testing, secure code reviews, and vulnerability remediation effortsAlign architectures with PCI, SOC 2, GDPR, and PayPal internal governance frameworks Document security controls and risk mitigations for audit and compliance stakeholders Required Qualifications Strong hands‑on experience with Google Cloud Platform (GCP) security Expertise in IAM, including service accounts and workload identity federation Experience with Cloud KMS, Secret Manager, and Cloud Armor Strong knowledge of Pub/Sub, Cloud Storage, and BigQuery security Experience implementing VPC Service Controls and perimeter‑based protections Deep understanding of IAM frameworks (RBAC, ABAC, OAuth2, OIDC, SAML) Strong background in API security, service‑mesh authentication, and mTLS Experience designing and securing asynchronous and event‑driven systems Solid knowledge of threat modeling, risk assessments, vulnerability management, and penetration testing support Preferred Qualifications Experience with Tableau, Looker, or similar analytics/dashboarding tools Background in financial services, lending, or credit‑risk environments Experience with security automation, including CI/CD hardening and scripting (Python or Bash) Knowledge of Zero Trust, DLP, CASB, and enterprise security monitoring tools Familiarity with Claude AI Soft Skills Strong communication skills with the ability to translate security risks into business‑aligned recommendations Highly autonomous, organized, and comfortable working in milestone‑based delivery models Detail‑oriented with strong judgment around data risk and regulatory compliance Ability to collaborate effectively with cross‑functional technical and non‑technical teams Must Have Skill Google Cloud Platform (GCP) Security Identity & Access Management (IAM) Cloud KMS, Secret Manager, Cloud Armor Pub/Sub, BigQuery, Cloud Storage security #J-18808-Ljbffr