Strong Experience in managing Cloud Identity & Cloud IAM * Configuring Workforce Identity Federation * Administering user accounts and groups programmatically * Managing a super administrator account * Managing privileged roles and separation of duties Strong experience in managing service accounts and its best practices * Securing and protecting service accounts (including default service accounts) * Securing, auditing and mitigating the usage of service account keys * Managing and creating short-lived credentials * Configuring Workload Identity Federation * Managing service account impersonation Strong Experience in ensuring data protection * Protecting sensitive data and preventing data loss * Securing secrets with Secret Manager * Inspecting and redacting personally identifiable information (PII) * Protecting and managing compute instance metadata * Managing encryption at rest, in transit, and in use Strong Experience in Container Security Experience in automating security scanning for Common Vulnerabilities and Exposures (CVEs) through a continuous integration and delivery (CI/CD) pipeline Experience in managing authentication (SAML, OAuth, MFA) in GCP Experience in Designing and configuring perimeter security & boundary segmentation Strong knowledge or experience in defining resource hierarchy Strong knowledge or experience in Network Security - Cloud Armor, SSL Policy Strong knowledge or experience in Security Monitoring tools such as Wiz..io, Security Command Center Good to have`s : * Experience in Planning for security and privacy in AI. Implementing security controls for AI/ML systems * Experience in Configuring logging, monitoring, and detection * Experience in Supporting compliance requirements * Experience in Configuring Binary Authorization to secure GKE clusters or Cloud Run * Experience in ServiceNow & ITIL * Experience in Azure Cloud * Experience in Terraform Cloud & Sentinel Policies