Tyto Athene is hiring a Google Cloud Security Architect on Google Assured Workloads to support our latest product offering for public sector clients. This is a hands-on role that requires deep technical knowledge of Google Cloud Platform (GCP), Kubernetes, Assured Workloads and strong experience implementing zero trust architectures, container security, and managing compliance frameworks like FedRAMP, DOD CNSSI, and DOD CC SRG.

Responsibilities:

• Design and implement secure, scalable architectures in Google Cloud environments.
• Architect and lead Kubernetes security implementations, including workload identity, policy enforcement, and runtime protection.
• Collaborate with engineering and compliance teams to deliver solutions that meet federal and state compliance requirements (FedRAMP, CMMC, etc.).
• Design and deploy automated security controls and monitoring solutions.
• Provide subject matter expertise in Google-native security services including FIPS encryption, Identity-Aware Proxy (IAP), Chronicle, and GKE Autopilot.
• Lead secure migrations and provide implementation guidance for customers adopting Google Assured Workloads especially with secure GKE deployments.
• Support security operations with guidance on incident response, threat hunting, and logging strategies on Google Cloud.
• Work closely with clients and cross-functional stakeholders to translate business needs into secure technical designs.

Required:

• US Citizenship is required due to work with government-facing clients and associated regulatory requirements.
• 7+ years of experience in cloud security, architecture, or engineering roles.
• Deep hands-on experience with Google Cloud Platform (GCP) security services.
• Expert knowledge of Kubernetes, including RBAC, network policies, and secure container orchestration.
• Experience implementing Zero Trust architecture in cloud-native environments.
• Familiarity with security and compliance frameworks such as FedRAMP, CMMC, NIST 800-53, or StateRAMP.
• Experience with Infrastructure as Code (e.g., Terraform) and CI/CD pipeline security.
• Strong communication skills and the ability to work directly with clients and stakeholders.

• Must demonstrate AI automation experience with technologies like Copilot, Claude or Gemini.

Preferred:

• Google Professional Cloud Security Engineer certification.
• CNCF/Kubernetes certfication(s).
• Experience with Google Chronicle, Security Command Center, and other native tools.
• Prior experience supporting federal agencies or regulated industries.
• Knowledge of container security platforms (e.g., Prisma Cloud, Sysdig, Aqua Security).

Location: Remote (must be willing to work east coast hours)

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave.