Cloud Security Engineer

🕒 April 24

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

HighLevel

WebsiteLinkedInAll Job Openings

201 - 500 employees

Founded 2018

☁️ SaaS

🤝 B2B

💰 Series A on 2021-11

SaaS • Marketing • B2B

HighLevel is an all-in-one marketing and sales platform designed to help businesses grow and succeed. The platform consolidates various marketing tools into a single solution, providing features such as lead capture through landing pages, surveys, forms, and calendars, as well as tools for nurturing leads via automated messaging across multiple channels including phone, SMS, email, and social media. HighLevel offers customizable solutions like online appointment scheduling, multi-channel follow-up campaigns, and pipeline management. Additionally, businesses can build websites, funnels, and landing pages using the intuitive page builder. HighLevel supports integrating with existing systems via API, and offers a membership platform for community building and course management. The platform is targeted towards marketers and offers white-labeling options for businesses to brand the software as their own. With a community-driven development approach and award-winning support, HighLevel is focused on empowering businesses to streamline their operations and enhance their marketing efficiencies.

📋 Description

• Design and implement security controls across GCP environments • Secure GKE clusters including RBAC, network policies, and workload identity • Implement least privilege access (IAM) and enforce security boundaries • Manage secrets using GCP Secret Manager • Harden Kubernetes workloads and cluster configurations • Implement Pod Security Standards (PSS), Network Policies & Admission Controllers (OPA/Gatekeeper) • Monitor and mitigate container vulnerabilities • Configure and manage Cloudflare WAF, DDoS protection, and rate limiting • Implement Zero Trust Access (ZTNA) policies • Secure APIs using Cloudflare security features • Manage DNS security and SSL/TLS configurations • Implement security monitoring using: GCP Cloud Logging & Monitoring, SIEM tools (e.g., Splunk, Datadog, Chronicle) • Define alerting rules and respond to security incidents • Conduct root cause analysis (RCA) and post-incident reviews • Ensure compliance with standards such as ISO 27001, SOC2, CIS Benchmarks • Perform regular security audits and vulnerability assessments • Automate compliance checks using policy-as-code tools

🎯 Requirements

• Strong hands-on experience with Google Cloud Platform (GCP): IAM, VPC, Cloud Armor, Cloud Logging, Security Command Center • Deep understanding of Kubernetes (GKE): RBAC, Network Policies, Ingress/Egress control Service Mesh (Istio) security concepts (mTLS, policies) • Experience with Cloudflare [WAF, Zero Trust, Access, DNS, CDN security] • Proficiency in at least one: Python / Go / Bash • Experience with Terraform / Helm

🏖️ Benefits

• EEO Statement: The company is an Equal Opportunity Employer. As an employer subject to affirmative action regulations, we invite you to voluntarily provide the following demographic information. This information is used solely for compliance with government record-keeping, reporting, and other legal requirements. Providing this information is voluntary and refusal to do so will not affect your application status. This data will be kept separate from your application and will not be used in the hiring decision.