Security Engineer, Cloud Vulnerability Research
share- linkCopy link
- emailEmail a friend
Mid
Experience driving progress, solving problems, and mentoring more junior team members; deeper expertise and applied knowledge within relevant area.Applyshare- linkCopy link
- emailEmail a friend
Minimum qualifications:
- Bachelor's degree in Computer Science or equivalent practical experience.
- 4 years of experience in application-level vulnerability testing and code-level security auditing.
- Experience in security assessment and security analysis.
Preferred qualifications:
- Experience finding and exploiting high severity vulnerabilities.
- Knowledge of Google Cloud.
- Ability to work independently.
- Excellent written and verbal communication skills.
About the job
Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.In this role, you will do Vulnerability Research to find security issues and deep-dive on exploitability. Consulting with launching teams and ensure they don’t launch with security flaws, thus boosting product excellence and user trust in our products. You will work closely with Google Cloud Platform (GCP) leads to proactively map out hazards based on product roadmaps. evaluate high-level product design considerations that transcend any individual launch. Using Security Engineering practices, we remediate vulnerability classes, systemic patterns and ensure that GCP is secure-by-default. Applying this work to the full GCP stack, from supply-chain and open source, over virtualization layers and low-level OS internals, towards high-level APIs and configurations.Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
Responsibilities
- Identify security issues and implement and design security controls, tools, and services to improve security systems and processes.
- Technical deep-dives into various Cloud-related products, tech stacks, and infrastructure.
- Find and exploit vulnerabilities, create tools to analyze products and systems at scale, and communicate results to influence remediation, hardening, or security roadmaps/strategies of product teams.
Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.
If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.