GCP Cloud Security Engineer

Cloud Security Engineer (GCP/IAM/Encryption) - ContractRate: £600 day Outside IR35Location: London - hybrid (3 days onsite) - Non negotable Duration: 12 monthClearance: Active SC, willingness for DVOverviewJoin a high-impact programme delivering secure, large-scale cloud infrastructure within a UK government environment. You''ll help design and secure a private/distributed cloud platform supporting critical national services.Key ResponsibilitiesDesign andamp; implement secure workloads in Google Distributed Cloud (GDC)/GCP (GDC experience not necessarily needed but would be strongly desired)Build and manage IAM architectures (SSO, MFA, privileged access life cycle)Enforce least privilege via resource hierarchies, policies, and constraintsConfigure network security controls (Firewalls, WAF, service perimeters)Deliver data protection andamp; encryption (KMS, CMEK/EKM, sensitive data handling)Secure CI/CD pipelines with vulnerability scanning and policy enforcementRequirementsStrong experience in cloud security engineering (GCP preferred; other CSPs considered)Proven IAM, network security, and compliance implementationExperience securing workloads in restricted/air-gapped/high-assurance environmentsAbility to translate cloud-native security practices to distributed/edge platformsDesirableGCP Professional Cloud Security Engineer certificationExperience in UK Gov secure environments (SC/DV, SECRET+)Familiarity with GDS standards or public sector deliveryPlease note this role will ..... full job details .....