We need an experienced Google Cloud security engineer to help us remotely deploy Cloud IDS and automate Security Command Center (SCC) findings remediation.
Google Cloud currently alerts on threats; we want automatic response for cryptomining and high-severity findings.
Scope
Deploy Cloud IDS (managed GCP service)
Configure SCC finding export to Pub/Sub
Build Cloud Functions / Cloud Run responders to:
Stop or quarantine compromised VMs
Block egress via VPC firewall rules
Handle GKE cryptomining (delete pods, cordon/drain nodes)
Block malicious IPs via firewall / Cloud Armor
Provide guidance on post-compromise hardening (rebuild, IAM cleanup, Workload Identity)
Required Experience
Google Cloud Platform (security focus)
Security Command Center (SCC)
Pub/Sub + Cloud Functions / Cloud Run
GKE security basics
VPC firewall rules
Engagement
Remote
Short-term implementation
Immediate start
To Apply
Briefly describe:
Your experience with GCP security automation
Any incident response / cryptomining mitigation work you’ve done
Apply Now
Apply Now