DevSecOps Engineer

*** At this time, we are unable to offer visa sponsorship for this position.
Candidates must be legally authorized to work for any employer in the United
States on a full-time basis without the need for current or future immigration
sponsorship.***

Combines software development, IT operations, and security practices to deliver a secure and compliant cloud environment. Responsible for implementing and maintaining GCP security guardrails, integrating security into CI/CD pipelines, and managing cloud security posture through tooling and automation. Works closely with engineering and security teams to ensure cloud infrastructure meets organizational security standards throughout the software delivery lifecycle.

• Design, implement, and maintain GCP security guardrails, policies, and organizational controls to enforce security standards across cloud environments.
• Manage and continuously improve GCP Security Command Center configurations to identify, prioritize, and remediate security risks.
• Operate and administer Wiz to monitor cloud security posture, triage findings, and drive remediation efforts across GCP workloads.
• Integrate security controls and automated scanning into CI/CD pipelines to enforce secure development practices and prevent vulnerable code from reaching production.
• Build and maintain security-focused Infrastructure as Code using Terraform to provision and enforce compliant GCP resources.
• Develop and enforce GCP organization policies, IAM controls, VPC Service Controls, and network security configurations.
• Identify and remediate misconfigured cloud resources, excessive permissions, and policy violations across GCP projects.
• Collaborate with Dev Ops and engineering teams to embed security best practices into development workflows and deployment processes.
• Automate security compliance checks and reporting to provide visibility into the organization's security posture for stakeholders and leadership.
• Aid in designing cost-optimization strategies for cloud security infrastructure without compromising coverage or controls.
• Participate in the hiring and interview process for the department.

• Bachelor degree or equivalent experience in a technical discipline.
• 5+ years of experience in Dev Ops, cloud security, or a related technical field.

• 5+ years of hands-on experience with GCP, including IAM, VPC, Security Command Center, and organization policies.
• Experience implementing and managing cloud security posture tools such as Wiz or similar platforms.
• Experience developing Infrastructure as Code with Terraform in GCP.
• Demonstrated experience securing CI/CD pipelines in Jenkins, Git Hub Actions, or similar tooling.
• Familiarity with GCP guardrails including org policies, VPC Service Controls, and resource hierarchy security.
• Experience with container security and Kubernetes workload hardening.
• Working experience with firewalls, proxies, and network security controls in cloud environments.
• Experience scripting in Bash, Python, or similar languages to automate security tasks.
• Familiarity with Git Ops practices and tools such as ArgoCD or similar.
• Experience with monitoring and observability tools including Grafana or similar.
• Understanding of Dev Sec Ops  principles and secure software development lifecycle (SSDLC) practices.
• Google Cloud security certifications (e.g., Professional Cloud Security Engineer) a plus.

• Skills / Knowledge:
  Solid working knowledge of GCP security services and cloud security best practices. Applies skills to solve complex security challenges and contribute to a more secure cloud environment.
• Job Complexity:
  Works on moderately complex security issues that require analysis of cloud configurations, risk data, and tool findings. Exercises sound judgment in determining remediation priorities and escalation paths.
• Supervision:
  Works with general direction and some independence. Collaborates effectively with peers and cross-functional teams to deliver results.

Global Payments offers a comprehensive benefits package to all of our team members, including medical, dental and vision care, EAP programs, paid time off, recognition programs, retirement and investment options, charitable gift matching programs, and worldwide days of service. To learn more, visit:

------------------------------------------------------------