Publicis Groupe
GCP Vulnerability Engineer
Publicis Groupe, New York, New York, 10261
Company Description Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of next, our 20,000 people in 53 offices around the world combine experience across technology, data sciences, consulting and customer obsession to accelerate our clients' businesses through designing the products and services their customers truly value. Job Description As a Security Engineer you will be a part of a smart cross-functional team delivering digital business transformation solutions to our clients. This position entails an individual contributor role focused on Security Architecture and Threat Modeling, encompassing governance, evaluation of public cloud services, and conducting security reviews for Public Cloud Providers. Collaboration and partnership with Engineering, Information Security, Program Management, and Development teams are essential. The candidate will conduct technical architecture reviews to pinpoint security opportunities, identify exploitable threats, and propose mitigation strategies. Qualifications Candidates should have knowledge of the tools and processes to provide operational security support to our cloud ecosystem. Pre-requisites for this position are at least a bachelor's degree with 3 - 5 years of experience on most of the following areas: • Proven offensive security-oriented mindset (vulnerability assessments, infrastructure & application pen testing, threat modeling, threat actor emulation) • Hands-on experience with GCP • Excellent understanding of Cloud security concepts/best practices • Familiarity with securing containers and container orchestration frameworks (such as Kubernetes - GKE) • Deep Understanding of MITRE ATT&CK and attacker TTPs • Programming/scripting languages a plus (Python preferred, but not required) • Infrastructure as Code knowledge a plus (Terraform) • Ability to deliver presentations to senior leaders and peer organizations in both a technical and non-technical manner. Certifications: • Cloud security certifications: GCP Professional Cloud Security Engineer, etc. • Container/Kubernetes certifications: CKA, CKAD, CKS, etc. • Other security certifications: OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, etc. Additional Information Flexible vacation policy; time is not limited, allocated, or accrued • 16 paid holidays throughout the year • Generous parental leave and new parent transition program • Tuition reimbursement • Corporate gift matching program Base Pay Range: USD 140,000 - 185,000 (varies depending on experience) The range shown represents a grouping of relevant ranges currently in use at Publicis Sapient. Actual range for this position may differ, depending on location and specific skillset required for the work itself. As part of our dedication to an inclusive and diverse workforce, Publicis Sapient is committed to Equal Employment Opportunity without regard for race, color, national origin, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity, or religion. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at hiringpublicissapient.com or you may call us at 1-617-621-0200.