Lead Cloud Engineer- Network Specialist

As a Lead Cloud Network Specialist, your primary focus will be on hands-on implementation and technical ownership, including:

Hands-on Delivery Leadership: Lead the implementation and operationalization of hybrid network architectures, ensuring high-quality, on-time delivery across the project lifecycle.

Hybrid Connectivity Implementation: Deploy and manage core hybrid connectivity solutions, utilizing services such as Network Connectivity Center (NCC), Partner Interconnect, and HA VPN to establish robust, secure, and dynamically routed links between cloud and on-premises environments.

Advanced Cloud Security Deployment: Establish and enforce a comprehensive network security posture by deploying and configuring cloud-native security products, including Cloud NGFW Enterprise (Next-Generation Firewall), Cloud IDS (Intrusion Detection System), and Cloud Armor (DDoS and WAF protection).

Perimeter and Service Control: Implement strong access boundaries and data exfiltration guardrails using VPC Service Controls (VPC SC) and Network Security Endpoints to protect sensitive services and resources.

Observability and Forensics: Configure and maintain network visibility tools like VPC Flow Logs and Firewall Rule Logging for real-time monitoring, troubleshooting, security diagnostics, and forensic analysis.

Automation and Compliance: Define and deliver network components using Infrastructure-as-Code (IaC) (e.g., Terraform) to ensure all deployments are repeatable, scalable, and compliant with established governance policies (e.g., using Cloud DNS for centralized naming).

Collaboration and Mentoring: Act as the technical Subject Matter Expert (SME) on network delivery, providing ad-hoc technical leadership and actively collaborating with on-premises network engineers to facilitate knowledge transfer and operational alignment.

We are looking for evidence of direct, impactful contributions in the following areas:

• Enterprise-Scale Hybrid Networking: Proven track record of successfully implementing complex connectivity solutions that bridge large-scale on-premises networks with public cloud environments (GCP, AWS, or Azure).
• Deep Cloud Security Proficiency: Hands-on experience deploying and operationalizing advanced network security services, specifically Cloud NGFW and Cloud IDS for inline threat prevention and detection, and using Cloud Armor for front-end protection.
• Network Service Control Implementation: Demonstrated impact in defining and implementing critical security guardrails, particularly with VPC Service Controls (VPC SC), to govern data access for platform services.
• Infrastructure Automation: Significant professional experience in automating network provisioning, configuration, and state management using IaC tools (e.g., Terraform).
• Cloud Platform Fluency: Expert-level knowledge of core network concepts and services within Google Cloud Platform, including VPC design, routing, load balancing, and network peering, that is adaptable to other major cloud providers.
• Technical Leadership & Influence: A history of independently owning the technical delivery of a project (scope of 1–2 months), demonstrating strong technical communication skills and the ability to set and maintain the bar for high-quality engineering work within a team.