Software Engineer III, Security, Cloud Key Management Service

Senior • On-site

$141,000 - $202,000/yr

New York, NY

Minimum qualifications:

Bachelor’s degree in Computer Science, Mathematics, or a related technical field, or equivalent practical experience.
2 years of experience with software development in C++, or 1 year of experience with an advanced degree.
2 years of experience designing and developing backend services, distributed systems, or security-focused infrastructure.

Preferred qualifications:

Master's degree or PhD in Computer Science, Cryptography, Mathematics, or related technical fields.
2 years of experience with data structures, algorithms, and software design, with fluency in Go and Python.
Experience developing accessible and secure technologies, ensuring products work for users and enterprise use cases.
Experience with security and cryptography principles (e.g., PKI, encryption standards, HSMs) or embedded systems.
Familiarity with cloud networking infrastructure, Kubernetes (GKE), or Infrastructure as Code (IaC) tools like Terraform.

About the job

Google's software engineers develop the next-generation technologies that change how billions of users connect, explore, and interact with information and one another. Our products need to handle information at massive scale, and extend well beyond web search. We're looking for engineers who bring fresh ideas from all areas, including information retrieval, distributed computing, large-scale system design, networking and data storage, security, artificial intelligence, natural language processing, UI design and mobile; the list goes on and is growing every day. As a software engineer, you will work on a specific project critical to Google’s needs with opportunities to switch teams and projects as you and our fast-paced business grow and evolve. We need our engineers to be versatile, display leadership qualities and be enthusiastic to take on new problems across the full-stack as we continue to push technology forward.

Google Cloud’s security model is the foundation of our user trust. The Cloud Key Management Service (KMS) team builds the cryptographic trust anchor for the entire Google Cloud Platform (GCP). We provide standard-compliant cryptographic primitives and secure, reliable storage of key material for both first-party Google applications and third-party enterprise customers.

Our stack is versatile and mission-critical, ranging from software-backed keys to hardware-backed solutions (Cloud HSM) and customer-controlled External Key Managers (Cloud EKM). We enable Data Sovereignty and Data Boundaries for all GCP services through our Customer-Managed Encryption Keys (CMEK) integrations.

Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

The US base salary range for this full-time position is $141,000-$202,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

Write product or system development code in C++ and Go to build secure, scalable features for the Cloud Key Management Service (KMS) family, including HSM and EKM integrations.
Participate in, or lead design reviews with peers and stakeholders to decide amongst available technologies, focusing on security, cryptographic standards, and distributed system reliability.
Review code developed by other developers and provide feedback to ensure best practices (e.g., secure coding standards, style guidelines, checking code in, accuracy, testability, and efficiency).
Contribute to existing documentation or educational content and adapt content based on product/program updates and user feedback, specifically for internal and external KMS integration guides.
Triage product or system issues and debug/track/resolve by analyzing the sources of issues and the impact on cryptographic operations, network, or service operations and quality.

Google

Google LLC started as a PhD project by Larry Page and Sergey Brin in 1998 at Stanford University. Google LLC has blossomed into a behemoth of the tech world. With its mission to organize the world's information and make it universally accessible and useful, Google’s search engine is its crown jewel. Online advertising, via AdWords and AdSense, forms the backbone of its financial success. Beyond search, Google has ventured into cloud computing, hardware, and software development. The innovative PageRank algorithm revolutionized search engine technology, and surviving the dot-com bubble burst and going public in 2004 spurred its meteoric growth. Acquiring YouTube stands as a testament to Google’s strategic expansion.