Full Job Description
GCP Platform Technical Lead
Position Summary
We are looking for a GCP Principal Engineer to lead our Cloud Engineering team, owning the Google Cloud Platform for the enterprise. This is a foundational platform role
you are the GCP technical authority, setting architectural/engineeringdirection,establishingengineering standards, and ensuring the platform is secure, scalable, and built to last.
Your role will include driving designs of the platform, mentoringthe engineers around you, andaligningquality and best practices. You bring deep GCPexpertise, a platform-owner mindset, and the leadership presence to align engineers and stakeholders around a shared technical vision.This role demands a�0cloud-first thinker�0who ensures cloud solutions meet business needs efficiently while prioritizing Infrastructure as Code (IaC) to create repeatable, automated deployments. You need to have a proventrack recordof�0architecting cloud environments from scratch.You'lldrive cloud transformation initiativesall CSP�0s focusing on theGCPplatformwhile ensuring every design decision considers security, reliability, and scalability.
This is not a hands-off leadership role
you write code, review designs, and stay close to the work.
Major Responsibilities
1. GCP Platform Ownership
�0wn the enterprise GCP platform end-to-end: organization structure, resource hierarchy, networking architecturewhile collaborating with several teams to ensure the platform is stable and compliant.
Define andmaintainthe GCP landing zone
Shared VPC, Org Policies,and project factory patterns
as the foundation all product teams build on.
Serve as theone of thefinal technical authoritieson GCPengineeringdecisions, reviewing designs for scalability, security, and operational excellence before they reach production.
Build self-service platform capabilities that enable product engineering teams to move fast without compromising standards.
2. Technical Team Leadership
Lead theGCPcloud engineering team as the technical anchor
set direction, conduct design reviews, unblock engineers, and drive delivery on platform initiatives.
Establish and enforce engineering standards:IaCpatterns, naming conventions, tagging strategy, branching models, and deployment practices.
Mentor engineers at all levels, building depth on the team and raising the bar on what �2excellence�2 looks like in cloud engineering.
Partner with architecture, security, operations, and business stakeholders to translate enterprise requirements into platform capabilities.
3. Infrastructure as Code & Automation
Drive Infrastructure as code as a coreprinciple
reusable modules, pipeline integration, state management, and policy guardrails.
Build and maintain CI/CD pipelines using Cloud Build, GitHub Actions, and Artifact Registry for both platform infrastructure and application teams.
Write production-quality automation to extend platform functionality, integrate GCP APIs, andeliminateoperational toil.
Implement policy-as-code using OPA, Config Connector, and GCP Org Policies to enforce governance at scale without manual gatekeeping.
4. Networking, Security & Compliance
Architect/EngineerGCP networking: Shared VPC, VPC Service Controls, Private Service Connect,NCC,CloudNAT,and hybrid connectivity via Cloud Interconnect and HA VPN.
Own the enterprise security posture on GCP
Workload Identity Federation, Binary Authorization, Secret Manager, IAM least-privilege design, and SIEM/CSPM integration (Security Command Center, Prisma Cloud, or Wiz).
Drive continuous automated compliance across applicable regulatory frameworks (HIPAA, PCI, SOC 2)socontrols are enforced in real time, not discovered at audit.
Integrate observability
Cloud Operations Suite, Datadog, and SLO/SLI frameworks
as a first-classplatformcapability across all workloads.
5. Platform Strategy & Continuous Improvement
Own the GCP platform roadmap, evaluating new GCP services and capabilities and making deliberate decisions about what the enterprise adopts and when.
IncorporateFinOps practices across the platform: committed use discounts, rightsizing, budget alerting, and cost allocation as engineering disciplines, not afterthoughts.
Research and pilot emerging GCP capabilitieslike�0�14�0Vertex AI, GKE Enterprise, Duet AI for DevOps
evaluating their fit for enterprise adoption.
Foster a culturethat drive collaboration across teams and towers to shape the future ofcutting-edgecloud technology adoption
Required Qualifications
10+ years in cloud and infrastructure engineering with 5+ years of deep, hands-on GCP experience at enterprise scale.
Proven ownership of a GCP organization
Resource Hierarchy, Billing, Org Policy, IAM, and multi-project governance in production.
Demonstrated technical leadership: you have led a platform team or major enterprise cloud initiative, set technical direction, and grown engineers around you.
Deep GCPexpertiserequiredacross:
Compute & Containers: GKE (Autopilot + Standard), Cloud Run, Compute Engine, MIGs
Networking: Shared VPC, VPC Service Controls, Private Service Connect, Cloud Armor, Interconnect
Data & Messaging: BigQuery, Pub/Sub, Cloud Storage, Dataflow, Cloud Composer
Security: IAM, Workload Identity, SCC, Binary Authorization, Secret Manager, VPC-SC
IaC�6 Automation: Terraform (modules, remote state, OPA), Cloud Build, Config Connector
Observability:Cloud Operations Suite, Datadog, SLO/SLI design, PagerDuty integration
Languages: Python and Go (required); Bashproficiencyexpected
Preferred Qualifications
Google Cloud Professional Cloud Architect certification (strongly preferred)
Google Cloud Professional DevOps Engineer certification
HashiCorpTerraform Associate or Professional certification
Experience in regulated industries applying HIPAA, PCI-DSS, or FedRAMP controls on GCP
Familiarity with Anthos, GKE Enterprise, and multi-cloud connectivity patterns
Experience with Vertex AI platform andMLOpspatterns on GCP
Education
Bachelor�s degree in Computer Science, Engineering, or a related field �1 or equivalent demonstrated experience.
Pay Range
The typical pay range for this role is:
$144,200.00 - $288,400.00
This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company�s equity award program.
Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.
Great benefits for great people
We take pride in offering a comprehensive and competitive mix of pay and benefits that reflects our commitment to our colleagues and their families.
This full�9time position is eligible for a comprehensive benefits package designed to support the physical, emotional, and financial well�9being of colleagues and their families. The benefits for this position include medical, dental, and vision coverage, paid time off, retirement savings options, wellness programs, and other resources, based on eligibility.
Additional details about available benefits are provided during the application process and on .
We anticipate the application window for this opening will close on: 06/12/2026
