Security Engineer, Sovereign Cloud Security Operations, Public Sector

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
  
• 1 year of experience with security assessments, security design reviews, incident response, security platform engineering, or threat modeling.
• 1 year of coding experience in one or more general purpose languages.
• Must possess an active Top Secret/SCI security clearance with current polygraph.

Preferred qualifications:

• 8570/8140 certifications/relevant industry certifications.
• Experience in a dedicated security operations role, with a proven track record of success in incident response, threat hunting, detection development, vulnerability management, or security platform engineering.
• Experience delivering comprehensive security solutioning through design, coding, configuration, and deployment.

About the job

Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

The United States (U.S) Sovereign Cloud Security Operations Team consists of security professionals dedicated to Google Public Sector's mission of securing its U.S. customers. Operating 24/7/365, the team's core responsibilities encompass Detection and Response, Security Infrastructure Support, and Vulnerability Management. The team possesses a comprehensive understanding of the security threats encountered by public sector organizations and utilizes the latest technologies to deliver exceptional security services.

As a Security Engineer on this team, you will be a direct technical member on the front lines, helping protect Google Public Sector's most critical customers by defending our sovereign cloud environments. In this role, you will support incident response investigations, assist in hunting for threats, and contribute to our vulnerability management program. You will also help maintain our security infrastructure and support the automation of our response capabilities.

Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions.

The US base salary range for this full-time position is $118,000-$170,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Assist in security incident investigations; data collection, analysis, and documenting findings. Support threat hunting activities by running queries to look for known indicators of malicious activity.
• Contribute to the development and tuning of detection rules, analytics, and correlation searches. Assist in the maintenance and testing of Security Orchestration, Automation, and Response (SOAR) playbooks.
• Support the vulnerability management life-cycle. Help analyze scan results, prioritizing vulnerabilities under supervision, and work with engineering teams to track and support remediation efforts.
• Assist in the operation and maintenance of the critical security tools and infrastructure that power our SOC. Learn from SMEs and contribute to the reliability and performance of our security stack.
• Develop technical skills in various security domains. Engage in learning opportunities, seeking guidance from executive engineers to build expertise and take on tasks.