Security Engineer, GDC, Compliance

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
  
• 2 years of experience with security assessments or security design reviews or threat modeling.
  
• 2 years of experience with security engineering, computer and network security and security protocols.
  
• 2 years of coding experience in one or more general purpose languages.
  

Preferred qualifications:

• Cybersecurity certifications preferred (eg: CISSP, ISO 27001, SOC 2/3 audit, FedRamp, PCI, HIPAA) and others.
  

About the job

Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

Compliance Security Engineers are Subject Matter Experts (SME) who require specialized knowledge of Google Data Centers (GDC) air-gapped security protocols and architecture, security regulations, security technologies, compliance controls, system-level designs, special soft skills (careful crafting of complex narratives), certification audits and security assessments, compliance requirements across many different compliance regimes: commercial, U.S. government, foreign governments, ISO, and much more.

Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

The US base salary range for this full-time position is $141,000-$202,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Identify security issues, implement and design security controls, tools, and services to improve security systems and processes.
  
• Analyze and advise on relevant regulatory frameworks and technical standards, perform design reviews to guide engineering teams toward secure and compliant implementation options.
• Assess and audit technical systems by conducting risk assessments, implementation reviews, and participate in certification audits to ensure adherence to compliance requirements.
• Oversee and guide engineering projects from a technical compliance perspective, collaborate with teams to improve security and act as a subject matter expert in compliance meetings.
• Initiate and drive compliance process improvements by identifying opportunities and lead engineering projects for solutions like monitoring, audit tooling, and report from conception to completion.