Senior GCP DevOps Engineer

Description:
Design and deploy GCP network architectures including VPCs, subnets, firewalls, Cloud NAT, VPNs, Interconnect, and Private Service Connect.
· Develop and maintain Terraform modules to automate network provisioning and configuration.
· Collaborate with cloud architects, security teams, and application owners to define networking requirements and implement best practices.
· Ensure network security, compliance, and performance optimization across GCP environments.
· Troubleshoot and resolve network-related issues in GCP environments.
· Integrate network automation into CI/CD pipelines and change management workflows.
· Document network designs, Terraform modules, and operational procedures.
· Stay current with GCP networking innovations and contribute to internal knowledge sharing.
Design reusable, versioned Terraform modules following best practices (DRY, least privilege, environment isolation) and enforce standards using Terraform Cloud / Terraform Enterprise or CI-based validations.
· Implement Infrastructure as Code (IaC) governance using policy-as-code (Sentinel / OPA), automated validations, and drift detection.
· Architect and implement end-to-end cloud network solutions aligned with business, security, and scalability requirements across multi-project and multi-environment GCP setups.
· Design and support networking for GCE workloads, including custom images, service accounts, startup scripts, load balancing, and secure access patterns.
· Architect and manage GKE networking including VPC-native clusters, IP aliasing, private clusters, ingress/egress design, Workload Identity, and integration with Cloud Load Balancing.
· Automate provisioning and lifecycle management of GKE and GCE resources using Terraform and integrate with CI/CD pipelines (GitHub Actions, GitLab CI, Azure DevOps, etc.).
· Design hybrid and multi-cloud network architectures, including on-prem connectivity, DNS integration, and identity-aware access patterns.
· Implement network observability and monitoring using Cloud Monitoring, VPC Flow Logs, Network Intelligence Center, and integrate alerts into operational workflows.
· Drive secure-by-design architectures, embedding zero-trust principles, least-privilege IAM, private access patterns, and segmentation across compute and container platforms.
· Optimize network and platform cost, performance, and reliability, including right-sizing, load balancing strategies, and traffic optimization for GCE and GKE.