Security Engineer
2 weeks ago
Cloudfresh is a Global Google Cloud Premier Partner, Zendesk Premier Partner, Asana Solutions Partner, GitLab Select Partner, Hubspot Platinum Partner, Okta Activate Partner, and Microsoft Partner.
Since 2017, we've been specializing in the implementation, migration, integration, audit, administration, support, and training for top-tier cloud solutions. Our products focus on cutting-edge cloud computing, advanced location and mapping, seamless collaboration from anywhere, unparalleled customer service, and innovative DevSecOps.
We're looking for a Google Cloud Security Engineer to harden client environments across GCP. You'll implement and help design security controls, automate guardrails, improve detection & response, and guide stakeholders through pragmatic, risk-based decisions across EMEA.
Requirements:- 2+ years proven, hands-on experience in a Security Engineer, SecOps (or similar) role building and operating cloud security controls (GCP).
- Strong knowledge of Google Cloud architecture and native security services: Cloud IAM (least privilege, Conditions), Organization Policies, VPC / Private Service Connect, VPC Service Controls, Cloud Armor (WAF/DDoS), Security Command Center (SCC), Cloud KMS/CMEK/HSM, Secret Manager, IAP/BeyondCorp Enterprise (Context-Aware Access), Cloud Logging/Monitoring and GKE security.
- Technical certifications related to Cloud Solutions are an advantage (Google Professional Cloud Security Engineer, Professional Cloud Architect; CISSP/CCSP/ISO 27001 LI/LA a plus).
- Experience executing changes across multiple clients/verticals in EMEA/CEE with sound change control (CABs), documentation and participation in incident response/on-call.
- Excellent communication and strategic planning abilities, able to explain trade-offs, influence remediation, and drive adoption of guardrails.
- Proficient with engineering – tooling stacks: Terraform, GitHub/GitLab CI, OPA/Conftest / Policy Controller (Config Sync), Cloud Build/Deploy, Artifact Registry; comfortable with HubSpot and Asana for collaboration with account teams when needed.
- Basic scripting experience (e.g., Python, Bash, or gcloud CLI).
- Strong Plus experience with Cloudflare.
- Fluency in English.
- Design, implement, and operate security controls for GCPfor SMB & Enterprise clients across EMEA & CEE.
- Perform security audits for GCP and Google Workspace environments.
- Implement key features: Org Policies, IAM Conditions, break-glass flows, VPC design (private subnets, Cloud NAT), Private Service Connect, VPC Service Controls perimeters, Cloud Armor (WAF/MPA, rate limiting, geo/IP policies), IAP/BeyondCorp with Context-Aware Access, KMS/CMEK/HSM, Secret Manager, Confidential/Shielded VMs, Cloud IDS.
- Configure and monitor Security Command Center, audit logs, and threat protection
- Harden GKE & Workloads: private clusters, Workload Identity, Binary Authorization, Pod Security standards, NetworkPolicy, image scanning/provenance, OS patching via OS Config/VM Manager.
- Automate guardrails: Reusable Terraform modules, gated CI checks (OPA/Conftest/Policy Controller), drift detection and safe automated remediation; codify SCC mute rules and Cloud Armor policies.
- Establish logging, detection & IR: Standardize Cloud Audit Logs and Log Router sinks to CMEK log buckets; integrate to Chronicle SIEM; tune SCC (ETD/CTD/VM TD), build IR runbooks, triage incidents, and continuously improve MTTR.
- Assist clients with implementation of 2FA, DLP, and compliance controls.
- Generate security assessment reports and provide actionable recommendations.
- Collaborate with DevOps and infrastructure teams to fix vulnerabilities.
- Collaborate with ISSM: Work on maintaining ISO 27001 Security standards, performing annual networking tests.
- Continuously assess the landscape: track new GCP features (e.g., Assured Workloads, Confidential Space, reCAPTCHA Enterprise) and update baselines to improve posture, reliability, and cost efficiency.
- Experience with multi-cloud or hybrid environments
- Familiarity with Google Workspace Enterprise security features
- Basic knowledge of SIEM or zero trust architectures
- Competitive Salary & Transparent Motivation: Receive a competitive base salary with performance-based bonuses, providing clear financial rewards for your success.
- Flexible Work Format: Work remotely with flexible hours, allowing you to balance your professional and personal life efficiently.
- Training with Leading Cloud Products: Access in-depth training on cutting-edge cloud solutions, enhancing your expertise and equipping you with the tools to succeed in an ever-evolving industry.
- International Collaboration: Work alongside A-players and seasoned professionals in the cloud industry. Expand your expertise by engaging with international markets across the EMEA and CEE regions.
- Vibrant Team Environment: Be part of an innovative, dynamic team that fosters both personal and professional growth, creating opportunities for you to advance in your career.
- When applying to this position, you consent to the processing of your personal data by CLOUDFRESH for the purposes necessary to conduct the recruitment process, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (GDPR).
- Additionally, you agree that CLOUDFRESH may process your personal data for future recruitment processes.
-
Security Consultant
6 days ago
Praha 4, Hlavní město Praha, Czech Republic Principal engineering s.r.o. Full timeChcete stát u bezpečnostních opatření, která chrání stovky tisíc klientů? Přidejte se do interního týmu velké bankovní skupiny a podílejte se na ochraně infrastruktury, systémů i dat. Čeká vás rozmanitá agenda, reálný dopad a tým, který nehází odpovědnost přes rameno. Budete chránit dvě klíčové společnosti pod jednou...
-
Staff Site Reliability Engineer
5 days ago
Praha 8, Hlavní město Praha, Czech Republic ShipMonk Full time 120,000 - 240,000 per yearWe are ShipMonk and we provide logistics services in the field of order fulfillment. We are operating from our main business in the USA, but Prague is the center of the development of our modern platform.Apply for jobWe are seeking an influential Staff SRE to help architect and drive the strategic evolution of our core cloud and deployment infrastructure,...
-
IT Technical Services Engineer
2 weeks ago
Praha 8, Hlavní město Praha, Czech Republic Bodycote Full time 60,000 - 120,000 per yearAbout BodycoteAt Bodycote, we're more than the world's leading provider of heat treatment and specialist thermal processing services, we're a people business at heart. Our commitment to innovation and sustainability guide everything we do. With a global footprint and a culture that values collaboration, curiosity, and continuous improvement, we're proud to...
-
Cloud DevSecOps Engineer
2 weeks ago
Praha 7, Hlavní město Praha, Czech Republic Direct pojišťovna Full time 80,000 - 120,000 per yearBackstory a co bude obsahem tvé práceJsme Fidoo – B2B fintech, který nyní vytváří řešení pro správu zaměstnaneckých výdajů a směnu měn pro firmy. Nyní se pouštíme do projektu neobanky pro SME (B2B) a začínáme stavět velkou finanční cloud-native platformu, která kompletně zjednoduší firmám řízení financí a cashflow....
-
Software engineer
2 weeks ago
Praha 8, Hlavní město Praha, Czech Republic Betsys Full time 960,000 - 1,440,000 per yearNechceš jen tlouct kód a hledáš něco komplexnějšího?Rád vyvíjíš nové aplikace designované pro multi-thread?Chceš mít odpovědnost za celý proces tvorby aplikace od návrhu přes vývoj, testování až po nasazení do produkce?Chceš se podílet na rozvoji systému s velkými požadavky na stabilitu a performance?Co tě u nás...
-
Analytik kybernetické bezpečnosti
6 days ago
Praha 4, Hlavní město Praha, Czech Republic T-Mobile Czech Republic Full time 480,000 - 960,000 per yearPřidej se k našemu Security Operations Center týmu, který spolupracuje s B2B zákazníky v České republice i zahraničí ve spolupráci s Deutsche Telekomem. Náš SOC zodpovídá za detekce bezpečnostních incidentů v různých infrastrukturách a reakce na ně. Koho hledámeDo našeho týmu fungujícímu v režimu 24/7 hledáme SOC L1 specialisty...
-
Galileo Ground Segment Engineer
2 weeks ago
Praha, Czech Republic Serco Full timeWorking closely with EUSPA (European Union Agency for the Space Programme), Serco has contributed significantly to various missions, offering expertise in engineering, IT support, and data management services. Our collaboration with EUSPA ensures the efficient operation and success of space programs, highlighting Serco's commitment to advancing Europe's...
-
Platform Engineer
15 hours ago
Praha, Czech Republic MSD Full time 120,000 - 180,000 per yearJob DescriptionJoin our company as we transform and innovate. We are at the forefront of research to deliver innovative health solutions that advance the prevention and treatment of diseases in people and animals. We are currently seeking a Cloud & Infrastructure Technology Staff Engineer to help deliver our Container Platform product. This is also an...
-
Middle Fullstack Engineer
6 days ago
Praha, Czech Republic Avenga Full time 60,000 - 120,000 per yearThis is us At Avenga, we believe that human creativity empowers technology that matters. Operating globally, our 6000+ specialists provide a full spectrum of services, including business and tech advisory, enterprise solutions, CX, UX and Ul design, managed services, product development, and software development.This is the jobAt Prague within the banking...
-
Software Engineer
2 weeks ago
Okres Praha-západ, Central Bohemia, Czech Republic AutoRABIT Holding Full time 400,000 - 600,000 per yearAbout AutoRABITAutoRABIT is the leading DevSecOps and CI/CD platform for low-code SaaS environments like Salesforce. Our solutions help organizations achieve scalable release management, robust version control, and bulletproof data protection. We're growing fast — and we're just getting started.Our CultureAt AutoRABIT, learning isn't just encouraged —...
-
Senior Software Engineer
2 weeks ago
Okres Praha-západ, Central Bohemia, Czech Republic AutoRABIT Holding Full time 60,000 - 120,000 per yearAbout AutoRABITAutoRABIT is the leading DevSecOps and CI/CD platform for low-code SaaS environments like Salesforce. Our solutions help organizations achieve scalable release management, robust version control, and bulletproof data protection. We're growing fast — and we're just getting started.Our CultureAt AutoRABIT, learning isn't just encouraged —...
-
Java Developer
6 days ago
Praha, Czech Republic Thales Full time 30,000 - 60,000 per yearLocation: Praha, CzechiaThales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more....
-
Data Engineer with Snowflake
2 weeks ago
U Garáží / Praha -Holešovice, Czech Republic, Czech Republic Nexer Group Full time 120,000 - 180,000 per yearNexer Czech republic is a division within DANIR AB – an IT consulting and R&D company. We have the opportunity to work with world-renowned brands from Scandinavia, the USA, the UK, and Western Europe. Our goal is to grow strong but rather in competencies than in numbers.About the ProjectWe are currently seeking a Senior Data Engineer to join the Data,...
-
Software Engineer – AI Prototyping and Demos
6 days ago
okres Praha-východ, Czech Republic GoodData Full time 60,000 - 120,000 per yearWe're seeking a talented Software Engineer with AI expertise to join our team in the Czech Republic and help shape the next generation of AI-driven analytics at GoodData.What You'll DoCollaborate with our AI team to design, prototype, and build demos and proof-of-concept applications that bring GoodData's AI vision to life — showcasing AI-powered BI,...
-
⋙Hledáme Cloud Network Engineera
6 days ago
Praha 515, Czech Republic mBlue Czech, s.r.o. Full timeO násDo týmu Infrastructure & Security hledáme pro našeho klienta specialistu na Microsoft Azure networking, který zvládne navrhovat, implementovat a optimalizovat bezpečná a škálovatelná síťová řešení, včetně občasných hybridních integrací.Náplň práce: Správa a návrh Azure sítí (vNets, NSG/ASG, VPN/ExpressRoute, Virtual...
-
Manager Software Development
2 weeks ago
Jakubská, Praha -Staré Město, Czechia, Czech Republic IESF AG Full time 80,000 - 160,000 per yearCompany Description Our client is an internationally presented cloud-based software product company that creates customized HR solutions for small to mid-sized organizations. With its all-in-one software platform and elevating one-of-a-kind technology, the company is proud to be one of G2's Top 100 Software Companies.To enhance the successful team in the...
