GCP Cloud Security Engineer with Clerk Authentication Expertise

---

Secure GCP-Clerk Integration for HIPAA-Compliant Medical Audio Storage System ## **Project Overview** We require an experienced GCP security engineer to implement a secure cloud storage solution for sensitive medical audio files, integrating Clerk authentication with granular RBAC controls. The system must meet HIPAA compliance requirements while supporting AI medical transcription workflows. ## **Scope of Work** ### 1. GCP Storage Architecture - Design and implement regional bucket structure with proper storage class tiers - Configure object lifecycle management policies - Implement versioning and retention policies - Set up VPC Service Controls and network security perimeter ### 2. Clerk Authentication Integration - Configure Clerk-Google OAuth2 integration - Implement JWT token validation for GCP access - Map Clerk user roles to GCP IAM permissions - Develop session management system with role inheritance ### 3. Security Implementation - Configure Customer-Managed Encryption Keys (CMEK) - Implement envelope encryption for sensitive audio files - Set up Data Loss Prevention (DLP) scanning for PHI - Configure Cloud Audit Logs ### 4. RBAC System Development - Design IAM role hierarchy (Transcriptionist, Physician, Admin, Auditor) - Implement attribute-based access control (ABAC) for patient data - Configure Storage Object Admin with fine-grained permissions - Develop automated permission revocation workflows ### 5. Compliance Requirements - Implement HIPAA-compliant access controls - Configure Bucket Lock for immutable audit logs - Set up HITRUST-aligned security monitoring - Document data flow diagrams for compliance reporting ## **Required Skills & Qualifications** - ✅ **Preferred Certifications**: Google Cloud Professional Cloud Security Engineer CISSP or CISM (Cybersecurity credentials) HIPAA Security Rule implementation experience -

Keyword: cloud