Senior Google Cloud Security Engineer

About the Position

We're seeking a Senior Google Cloud Security Engineer to join our team in Charlotte, NC, Waltham, MA, or York, PA, ensuring secure cloud foundations and reducing risk.

Responsibilities

• Cloud Security Architecture & Engineering

  • Partner with the Google Cloud team to design secure cloud architectures, including IAM/least privilege, network security, encryption, secrets management, and logging/monitoring standards.
  • Define and maintain GCP security reference architectures and guardrails aligned to enterprise security policies and industry frameworks.
  • Lead threat modeling and architecture risk reviews for new GCP services, platforms, and major migrations; document decisions and required controls/compensations.

• Security Engineering, Automation & DevSecOps

  • Engineer scalable security controls using automation and infrastructure-as-code (baseline policies, configuration validation, continuous compliance checks).
  • Integrate security controls into CI/CD (policy checks, IaC validation, secrets detection, artifact/image scanning) to enable secure delivery with minimal friction.
  • Develop reusable security modules, patterns, and documentation that drive consistent adoption across teams.

• SecOps SIEM Ownership (Google Security Operations / Chronicle)

  • Administer and mature the SecOps SIEM platform: data ingestion, log onboarding, parsing/normalization, content management, and access controls.
  • Lead detection engineering: build, tune, and maintain high-fidelity detections and analytics based on threat intelligence and observed attacker techniques; reduce false positives through iterative tuning.
  • Develop dashboards and reporting to support SOC performance, cloud visibility, and executive-level risk insights.
  • Partner with Incident Response/Threat Hunting/Cloud Engineering to investigate cloud events and improve telemetry and detections.

• Risk Reduction, Compliance & Continuous Improvement

  • Drive remediation of critical/high cloud findings by coordinating with owners, validating fixes, and ensuring controls remain effective over time.
  • Support internal and external audits by producing evidence for cloud control operation (logging, access governance, encryption, vulnerability management, change control).
  • Contribute to security standards, patterns, and runbooks; participate in lessons learned and resilience readiness improvements.

Requirements

• Education

  • Bachelor's degree (or higher) in Cybersecurity, Computer Science, Information Systems, Engineering, or related field (or equivalent practical experience)

• Experience

  • 7+ years of professional experience in cybersecurity, including significant hands-on experience in cloud security architecture and engineering
  • 3+ years securing Google Cloud Platform (GCP) environments across identity, network security, encryption, and logging/monitoring
  • Hands-on experience administering or engineering detections in a modern SIEM (Google Security Operations/Chronicle preferred; comparable SIEM acceptable)
  • Proven track record partnering with cloud platform teams and application teams to deliver security improvements through engineering, automation, and standards

• Key Skills & Knowledge

  • Strong grounding in cloud security architecture: least privilege, defense-in-depth, secure network design, encryption, and secure delivery practices
  • Practical knowledge of GCP security capabilities (IAM, org/policy guardrails, security posture management concepts, logging/monitoring, key management/encryption)
  • Security automation and infrastructure-as-code experience (Terraform or equivalent) and scripting (Python or equivalent)
  • Detection engineering fundamentals: log onboarding, parsing/normalization, query languages, alert tuning, and dashboarding
  • Threat modeling, security review, and risk translation into pragmatic engineering requirements
  • Strong communication and ability to coordinate across multiple technical teams

• Certifications Preferred (globally recognized)

  • Google Professional Cloud Security Engineer (highly relevant)
  • CSSP and/or CISSP
  • Relevant GIAC certifications aligned to cloud/IR/detection engineering (e.g. incident response/threat detection), or equivalent credentials

We Offer

• Hybrid Work Environment
• Professional Development Opportunities
• Competitive Compensation

About the Company

Dentsply Sirona is the world’s largest manufacturer of professional dental products and technologies, with a 130-year history of innovation and service to the dental industry and patients worldwide. Dentsply Sirona develops, manufactures, and markets a comprehensive solutions offering including dental and oral health products as well as other consumable medical devices under a strong portfolio of world-class brands. Dentsply Sirona’s products provide innovative, high-quality, and effective solutions to advance patient care and deliver better and safer dentistry. Dentsply Sirona’s global headquarters is located in Charlotte, North Carolina. The company’s shares are listed in the United States on NASDAQ under the symbol XRAY.

Dentsply Sirona is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, disability, or protected Veteran status. We appreciate your interest in Dentsply Sirona.

If you need assistance with completing the online application due to a disability, please send an accommodation request to [email protected]. Please be sure to include “Accommodation Request” in the subject.

For California Residents:

We may collect the following categories of personal information in connection with the submission of your resume or application materials to us for employment, and if hired, your employment with us: identifiers (e.g., name, address, email address, birthdate); personal records (e.g., telephone number, signature, education information, criminal background information, passport number and visa information); consumer characteristics (e.g., sex, marital status, veteran status, race, disability, sexual orientation); professional or employment information (e.g., resume, cover letter, employment history, background check forms, references, certifications, transcripts and languages spoken); and inferences from personal information collected (e.g., a profile reflecting abilities and aptitudes).

The above categories of personal information are collected for the following business purposes: performing recruitment and hiring services; processing interactions and transactions (e.g., to comply with federal and state laws requiring us to maintain certain records, managing the workforce); and security (e.g., detecting security incidents, protecting against fraudulent or illegal activity).

For additional details and questions, contact us at [email protected]

**Nearest Major Market: **Charlotte

Apply now »

Find similar jobs:

Corporate PT,

Corporate