Senior IT Engineer - Cloud Security

- Contribute significantly to automating and enforcing cloud security across Ulta Beautys GCP ecosystem by establishing guardrails and securing workloads - Implement and maintain scalable security controls while integrating security into CI/CD pipelines - Automate monitoring and remediation processes to ensure data, identities, and workloads are protected within cloud environments - Configure, deploy, and sustain data and infrastructure security controls in GCP and Azure - Design and implement Identity and Access Management (IAM) configurations adhering to least-privilege and zero-trust principles - Apply network security measures including firewall rules and secure interconnects to protect data in motion - Safeguard GCP services with a focus on data confidentiality and workload isolation - Develop encryption and key management strategies utilizing Cloud KMS and HSM integrations - Automate configuration baselines and policy enforcement using tools such as Terraform and Cloud Build - Integrate cloud-native security tools to enhance visibility, compliance, and anomaly detection - Create automation scripts to detect and remedy misconfigurations or security drift - Build and manage CI/CD integrations for vulnerability scanning and data protection - Configure alerts from CSPM tools and GCP-native monitoring for network and IAM anomalies - Respond promptly to cloud security incidents by isolating resources and applying necessary remediation - Conduct security assessments of cloud workloads and enforce compliance baselines through automated checks - Document security controls, policies, and exceptions to maintain audit readiness - Collaborate with DevOps, Infrastructure, and Application teams to embed security within pipelines and workloads - Provide technical support in troubleshooting GCP IAM, firewall rules, and policy enforcement - Participate in on-call rotations for security incidents and vulnerability patching