April 28, 2025

Security Analyst, Product Security Engineering, Cloud CISO

Mid • On-site

$101,000 - $144,000/yr

Sunnyvale, CA

Minimum qualifications:

Bachelor's degree or equivalent practical experience.
2 years of experience in security engineering, security operations, vulnerability management, incident management, security assessments, or security assurance/compliance.
2 years of experience in data analysis.
Experience with SQL.
Experience in operational security risk assessments or vulnerability assessment.

Preferred qualifications:

2 years of experience in incident analysis, malware research, SOC, or any other similar incident response experience.

About the job

Google Cloud Product Security Engineering (PSE) is responsible for ensuring that every Google Cloud product ships as secure as it can be. PSE owns and drives the product security strategy for Google Cloud. We work with almost every aspect of Google’s infrastructure and on solving truly planet scale infrastructure security problems that have societal level impacts. The PSE team uses security expertise, investigative skills, and a cross-product perspective to deliver insights that reduce risk for Cloud products and supporting infrastructure. We provide deep insights on security risk trends, systematic remediations, and data-driven measurements on the effectiveness of Cloud hardening.

In this role, you will have the opportunity to help set the direction for product security in Google Cloud and partner with amazing existing teams across Google. These include existing security teams, privacy teams and engineering teams. You will help set the focus, direction and impact of this organization with regards to product security. There is an exciting mix of work to be accomplished across multiple security domains.The US base salary range for this full-time position is $101,000-$144,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

Produce metrics to measure security control adoption and effectiveness.
Drive impact across multiple aspects of security remediations and hardening.
Understand risk and propose improvements to security policies.
Facilitate alignment and clarity across teams on goals, outcomes and timelines, and manage project priorities, deadlines, and deliverables.
Perform data analysis to generate risk trends.

Google

Google LLC started as a PhD project by Larry Page and Sergey Brin in 1998 at Stanford University. Google LLC has blossomed into a behemoth of the tech world. With its mission to organize the world's information and make it universally accessible and useful, Google’s search engine is its crown jewel. Online advertising, via AdWords and AdSense, forms the backbone of its financial success. Beyond search, Google has ventured into cloud computing, hardware, and software development. The innovative PageRank algorithm revolutionized search engine technology, and surviving the dot-com bubble burst and going public in 2004 spurred its meteoric growth. Acquiring YouTube stands as a testament to Google’s strategic expansion.