What are the responsibilities and job description for the W2Only|Cloud Security Engineer/Architect (GCP) position at Nasscomm?
Role: Cloud Security Engineer/Architect (GCP)
Duration: 7 Months
Location: Jersey City, NJ 07302
GCP, Python, Terraform, Security
Role summary: Embed security and compliance guardrails into the GCP rollout so onboarding is secure-by-default and audit-ready.
Key responsibilities:
Translate control requirements into technical guardrails (Org Policies, baselines)
Define encryption/key management patterns and secrets handling expectations
Set logging/monitoring requirements and evidence retention standards
Drive exception handling, risk acceptance workflow inputs, and remediation tracking
Mandatory skills/experience:
Cloud security fundamentals; control mapping/evidence discipline
GCP guardrails concepts (policy constraints, IAM hardening, logging requirements)
Practical delivery mindset: implementable standards, not just documentation
Nice-to-have: Threat modeling; vulnerability management integration; incident response practices Success measures: Fewer control gaps, faster audit responses, fewer onboarding rework cycles.