Security Engineer, Google Public Sector

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
• 5 years of experience with security assessments or security design reviews or threat modeling.
• 5 years of experience with security engineering, computer and network security and security protocols.
• Experience delivering comprehensive security solutioning through design, coding, configuration, and deployment.
• Ability to travel up to 25% of the time internationally.
• Active US Government Top Secret/Sensitive Compartmentalized Information (TS/SCI) security clearance with polygraph.

Preferred qualifications:

• Certifications in CISSP, CISM, GCIH, GCIA, or OSCP.
• 8 years of experience in a security operations role in incident response, threat hunting, and vulnerability management.
• Understanding of cloud security principles and best practices, with experience in securing cloud environments.
• Experience in a regulated industry (e.g., finance, healthcare, government).
• Ability to contribute to the security community (e.g., open-source projects, blog posts, conference presentations).

About the job

Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

As a Security Engineer, you're not just reacting to threats, you're anticipating them. You'll manage cybersecurity operations, leading the development and implementation of advanced security strategies to protect our critical assets in a dynamic threat landscape and also identify security issues and implement and design security controls, tools, and services to improve security systems and processes.
Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions.

The US base salary range for this full-time position is $166,000-$244,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Develop and implement security monitoring strategies, incident response plans, and security awareness programs (e.g., National Institute of Standards and Technology (NIST), Information Security Management System (ISO 27001), Payment Card Industry Data Security Standard (PCI DSS).
• Oversee the deployment and operation of Security Information and Event Management (SIEM) systems, Intrusion Detection/Prevention Systems (IDS/IPS).
• Lead incident response efforts, including investigation, containment, eradication and recovery.
• Conduct forensic analysis of security incidents and develop and deliver post-incident reports and recommendations.
• Deliver security solutioning through design, coding, configuration, and deployment.