About the roleWe are seeking a Google Workspace Security Architect with strong hands-on experience in Google Workspace security hardening, identity and access governance, and endpoint security assessment.
This is an execution-focused role rather than a broad strategy advisory position. The consultant will evaluate the client's current environment, identify security improvements, document findings, develop remediation plans, and support decision-making around endpoint management and security controls.
Success in this role requires a structured methodology, strong documentation discipline, and the ability to produce professional client-facing deliverables, including remediation trackers, evidence packages, governance documentation, and executive summaries.
What You'll Do- Assess and harden Google Workspace security configurations, including MFA enforcement, administrator privilege reviews, security policies, sharing controls, audit logging, and third-party OAuth/application access.
- Conduct identity and access governance reviews, including user/group/admin access validation, privileged access reviews, MFA coverage assessments, OAuth/SSO application inventory reviews, and joiner/mover/leaver process evaluations.
- Develop and maintain cybersecurity documentation, including remediation plans, governance procedures, exception registers, evidence packages, quarterly access review templates, and executive-ready reports.
- Build and analyze endpoint inventories and assess security controls such as device encryption, patch management, local administrator rights, screen-lock policies, device enrollment, and offboarding/wipe procedures.
- Provide decision support and recommendations regarding endpoint management and security solutions, including Google Endpoint Management, Microsoft Intune, CrowdStrike, SentinelOne, Microsoft Defender for Endpoint, and MSP/MSSP-managed models (decision support only; no tooling implementation required).
- Collaborate with project stakeholders while adhering to established documentation standards, confidentiality requirements, and quality review processes.
What We're Looking ForMust-Have Experience.- Hands-on experience securing and administering Google Workspace environments, including security hardening and policy implementation.
- Strong background in identity and access management (IAM), privileged access reviews, MFA implementation, access governance, and user lifecycle management.
- Experience conducting cybersecurity assessments and creating remediation plans, risk registers, audit evidence packages, and security documentation.
- Familiarity with endpoint security controls, device management, and endpoint governance best practices.
- Excellent documentation, reporting, and communication skills with the ability to produce client-ready deliverables.
- Professional-level English communication skills with the ability to interact directly with stakeholders.
Nice-to-haves
- Experience with Google Endpoint Management.
- Experience evaluating or working with Microsoft Intune, CrowdStrike, SentinelOne, and Microsoft Defender for Endpoint.
- Experience supporting cybersecurity compliance, audit preparation, or security gap remediation initiatives.
- Consulting or client-facing cybersecurity experience.
- Security certifications such as CISSP, CISM, Security+, Google Cloud Security, or related credentials.
- Experience working in professional services, advisory, or managed security environments.
Our recruitment process- Recruiter interview (30 min)
- Technical Interview (30 min)
- Client Interview 1 (45 min)
- Client Interview 2 (45 min)
We strive to move efficiently from step to step to make the recruitment process as fast as possible.
Our team Business Operations Locations Latin America Remote status Fully Remote
