Security Engineer, Detection and Response, Infrastructure Threats
Role details
Job location
Tech stack
Job description
Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
Part of Google's Detection and Response team, we monitor Google's network and systems for threats to information security. This team builds detection to secure our production systems from insider threats, hackers, and exploits. We strive to accomplish this in the least intrusive way possible, protecting Google's culture and innovative practices.
Responsibilities
- Build new detection capabilities to protect our Google intellectual property, business data, and user data.
- Hunt for and respond to security events on Google's networks as part of our 24/7 global operation.
- Investigate a wide variety of security events across various Alphabet systems to assess threats to Google or its customers.
- Collaborate with teams across Google to model insider risks and cultivate new data sources.
- Participate in response to large-scale security incidents.
Requirements
Experience completing work as directed, and collaborating with teammates; developing knowledge of relevant concepts and processes., * Bachelor's degree or equivalent practical experience.
- 1 year of experience in security analysis, risk modeling, or security detection scoped work.
- Experience with security and security analysis.
- Experience coding in one or more general purpose languages., * 3 years of experience in responding to security problems in target-rich environments, looking at security alerts, forensic analysis, or incident response.
- Programming experience in Python, Go, C/C++, or Java.
- Expertise in analysis of large data sets or logs to find patterns or interesting activities (using SQL, or custom tools).
- Demonstrated expertise with threat detection development or threat hunting.