Technical Program Manager II, Cloud Platforms, CISO

Minimum qualifications:

• Bachelor's degree in a technical field, or equivalent practical experience.
  
• 2 years of experience in program management.
  
• Experience working with Cloud Platforms or working in a Cloud environment.
• Experience with Data Analysis.

Preferred qualifications:

• 2 years of experience managing cross-functional or cross-team projects.
• Experience working with security frameworks, such as building out security processes, working with access and identity management, incident response, or risk assessment.
• Experience with risk analysis.

About the job

A problem isn’t truly solved until it’s solved for all. That’s why Googlers build products that help create opportunities for everyone, whether down the street or across the globe. As a Technical Program Manager at Google, you’ll use your technical expertise to lead complex, multi-disciplinary projects from start to finish. You’ll work with stakeholders to plan requirements, identify risks, manage project schedules, and communicate clearly with cross-functional partners across the company. You're equally comfortable explaining your team's analyses and recommendations to executives as you are discussing the technical tradeoffs in product development with engineers.

The Cloud Protection and Recovery (CPR) team in the Cloud CISO organization focuses on enabling Google Cloud customers and partner security teams to protect their Cloud environments better than they could independently or with any other cloud service provider. In this role, you will analyze threat intelligence to prepare for and tailor countermeasures for operational and platform level risks, ensuring top cloud fraud and abuse risks are anticipated and mitigated. You will also create key insights to influence cloud strategy for defense and governance, and guide stakeholders through cybersecurity incidents.

The US base salary range for this full-time position is $132,000-$189,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Conduct threat modeling and risk reviews to identify and remediate risks related to malicious use and customer compromise, aligning with the team's goal to minimize the malicious use of the cloud platform.
• Analyze security and abuse incidents to derive insight into attack vectors and TTPs, contributing to the development of a system to accurately attribute and track abuse incidents.
• Coordinate across teams to eliminate attack vectors, harden the platform, and enhance detection and monitoring capabilities, reducing the time to detect and suspend malicious accounts.
• Develop excellence in security risk management by identifying, monitoring, and reporting security gaps and incidents.
• Monitor and communicate progress and risks, propose mitigation plans, and align stakeholders on de-risking strategies.