Security Engineer, GDC Airgapped Compliance

Security Engineer, GDC Airgapped Compliance

Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

Google Distributed Cloud air-gapped (GDCag) to meet the compliance regimes under which the Public Sector, Defense Industry, Critical National Infrastructure, Financial Sector and other customers operate, including but not limited to standard frameworks, and establish a governance framework to ensure the continuous compliance of all customers. Google Distributed Cloud as a product, enables public sector organizations and regulated enterprises to address strict data residency and security requirements, delivering innovation to their users. GDC's air-gapped solution does not require connectivity to Google Cloud or the public internet to manage the infrastructure, services, APIs, or tooling, and is built to remain disconnected in perpetuity. It is designed to support strict requirements in alignment with NIST SP 800-53-FedRAMP high security controls. In this role, you will have specialized knowledge of GDC air-gapped security protocols and architecture, security regulations, security technologies, compliance controls, system-level designs, special soft skills (careful crafting of narratives), certification audits and security assessments, compliance requirements across many different compliance regimes: commercial, U.S. government, foreign governments, ISO etc.

Responsibilities:

• Analyze and interpret regulatory frameworks (including Governments, ISO, and commercial standards) to determine applicability and ensure technical alignment for GDC-ag.
• Lead the end-to-end development of compliance engineering projects, including the automation of audit evidence collection, monitoring solutions, and reporting tools.
• Conduct technical design reviews, risk assessments, and implementation audits to advise engineering teams on secure and compliant architecture options.
• Provide subject matter expertise during certification audits, security assessments, and cross-functional meetings to bridge the gap between compliance requirements and engineering execution.
• Collaborate with security and product teams to support incident and vulnerability response efforts, driving continuous improvements in the overall security posture.