Apply on Employer Site

ATX Defense · 11 hours ago

Cloud Security Engineer (GCP)

United States

Full-time

Remote

Mid Level

3+ years exp

ATX Defense is a high-growth secure VDI provider focused on delivering cost-effective solutions for organizations seeking compliance. The Cloud Security Engineer will support the cloud engineering team by automating security and compliance efforts on the Google Cloud Platform, actively addressing vulnerabilities and embedding security into infrastructure.

AppsBusiness DevelopmentManagement ConsultingNational Security

No H1B

U.S. Citizen Only

Responsibilities

Build self-service, automated security guardrails that enable teams to move fast safely

CVE Remediation: Driving resolution for vulnerabilities identified through vulnerability scanning tools, working closely with engineering team members and providing clear, actionable fix guidance and or actioning fix requests yourself through pull requests

Architect: Design and Develop solutions that embed security into our infrastructure from build to runtime, turning compliance requirements into code and manual checks into automated pipelines

Manage Google Security Command Center: Configure and tune Web Security Scanner, Vulnerability Scanning, and Threat Detection. Aggregate, prioritize, and track findings; either provide clear remediation guidance to engineering teams or submit pull requests with fixes directly

Automate Compliance Baselines: Develop and maintain Infrastructure as Code (Terraform/Terragrunt, Ansible, Packer) that enforces STIGs, CISA guidelines, and internal security standards for VMs, containers, and cloud resources

Build Container Security Gates: Design and implement automated compliance validation for Docker images using Trivy and custom policies. Create CI/CD (GitHub Actions) enforcement that prevents non-compliant images from reaching production

Shift Security Left: Work with engineering leadership to embed security scanning and validation into developer workflows, making secure defaults the easy path

Relationship Management: Build and maintain strong, long term relationships with our partners in the Compliance department acting as a consistent point of contact and trusted advisor on compliance related issues

Qualification

GCP security expertiseAutomation proficiencyIaC (Terraform/Ansible)Container securityCI/CD integrationCompliance knowledgeBashGoPythonPackerDevSecOps experienceOpen-source contributions

Required

U.S. Citizenship: Must be a U.S. citizen located within the United States

Technical Expertise: 3+ years securing GCP environments with hands-on experience in Security Command Center and cloud-native controls

Automation-First Mindset: Proven ability to code security solutions, with proficiency in Bash, Go, and Python. You treat infrastructure and compliance as software problems

IaC Proficiency: Strong experience with Terraform/Terragrunt and Ansible for secure, repeatable infrastructure deployment

Container Security: Deep understanding of Docker image security, scanning tools (Trivy), and implementing image admission policies

CI/CD Integration: Experience building security automation into GitHub Actions or similar pipelines

Compliance Knowledge: Familiarity with STIGs, CIS benchmarks, or CISA hardening guides and how to codify them