Sr. GCP Security Engineer
Axos Bank · Manila, Metro Manila, Philippines
Banking · 1,001-5,000 employees
About the role
Lead the security architecture and implementation of controls across Google Cloud Platform environments for financial workloads. Manage IAM strategies, VPC security, and integrate security tooling into CI/CD pipelines using Terraform.
What they look for
Requirements
Requires over 6 years of information security experience with at least 3 years focused on GCP in enterprise or regulated environments. Must be proficient in GCP security services, Terraform, and Python, with a degree in Computer Science or a related field.
Full description
Axos Business Center, Corp
About This Job
We are looking for a Senior GCP Security Engineer to protect and advance the security of our Google Cloud Platform environments. As a key member of our Cloud and AI Security team, you will serve as the GCP security authority — leading security architecture decisions, implementing controls, and ensuring our cloud workloads meet the highest standards required.
Key Responsibilities
- Architect and implement end-to-end GCP security controls across projects, folders, and organization-level policies
- Design and manage IAM strategy: workforce identity federation, service account governance, Workload Identity, and organization policy constraints
- Implement and manage VPC Security Controls — VPC Service Controls, Private Google Access, Cloud Armor, and firewall policies
- Lead data security strategy as well as zero-trust access controls for internal applications and services hosted on GCP
- Integrate security tooling into GCP-native CI/CD pipelines (Cloud Build, Artifact Registry) and Infrastructure as Code (Terraform)
- Conduct threat modeling and security assessments for GCP-hosted financial workloads
- Support audit and regulatory reviews as well as monitor GCP security posture
- Stay current with GCP releases and the evolving FSI threat landscape; communicate relevant changes to stakeholders
Required Qualifications
- 6+ years of information security experience, with 3+ years focused on GCP security in enterprise or regulated environments
- Expert-level proficiency with GCP security services: SCC, IAM, VPC Service Controls, Cloud Armor, KMS, DLP, Chronicle
- Hands-on experience with Terraform for GCP infrastructure security automation
- Strong command of Python for security tooling and automation
- Knowledge of financial services compliance requirements
- Deep understanding of cloud-native threat vectors, attack techniques (MITRE ATT&CK for Cloud), and detection engineering
- Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
Preferred Qualifications
- Google Professional Cloud Security Engineer certification — strongly preferred
- Google Professional Cloud Architect certification
- Certifications: CISSP, CCSP, CISM, GCIA, or GCSA
- Experience securing Google Workspace in an enterprise financial services context
- Familiarity with Apigee API security and Cloud Endpoints for financial API gateways
About Axos
Born digital-first, Axos delivers financial tools and services that allow individuals, small businesses, and companies to access and manage their money how, when, and where they want. We’re a diverse team of dynamic, insightful, and independent innovators who are excited to provide technology-driven solutions that offer unbeatable value to our customers.
Axos Financial is our holding company and is publicly traded on the New York Stock Exchange under the symbol "AX" (NYSE: AX).
Learn More about working at Axos Business Center
Pre-Employment Background Check, Medical, and Drug Test:
All offers are contingent upon the candidate successfully passing a credit check, criminal background check, and pre-employment medical and drug screening.
Equal Employment Opportunity:
Axos is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state, and local laws.
Job Functions and Work Environment:
While performing the duties of this position, the employee is required to sit for extended periods of time. Manual dexterity and coordination are required while operating standard office equipment such as computer keyboard and mouse, calculator, telephone, copiers, etc.
The work environment characteristics described here are representative of those an employee may encounter while performing the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position.