Security Engineer, Cloud Threat and Abuse Detection

2 Weeks ago • 7 Years + • Cyber Security

About the job

Summary

This Security Engineer role focuses on cloud threat and abuse detection within Google Cloud Platform. Responsibilities include researching new detection techniques to mitigate abusive activities like outbound attacks, botnets, and DDoS. The role requires developing high-fidelity detection mechanisms using network and host-level telemetry, analyzing logs and packets to improve accuracy, proactively hunting for threats, and managing tools for collecting and processing abuse reports and threat intelligence. The ideal candidate possesses strong experience in cloud security research, network security, intrusion detection, threat intelligence, and threat detection, along with a deep understanding of defensive security concepts and networking protocols.
Must have:
  • 7+ years experience in cloud security or related fields
  • Expertise in defensive security concepts (MITRE ATT&CK)
  • Experience analyzing network traffic and logs
  • Develop high-fidelity threat detection
  • Proactive threat hunting and response
Good to have:
  • Host/memory forensics experience
  • Proficiency in one or more coding languages
Not hearing back from companies?
Unlock the secrets to a successful job application and accelerate your journey to your next opportunity.

Minimum qualifications:

  • Bachelor's degree or equivalent practical experience.
  • 7 years of experience working in one or more of the following areas: cloud security research, network security, intrusion detection system, threat intelligence, or threat detection.
  • Experience with defensive security concepts such as adversity tactics and techniques, MITRE ATT&CK framework, logging, etc.
  • Experience with networking and core internet protocols (e.g., TCP/IP, HTTP, SSL) and analyzing malicious network traffic.

Preferred qualifications:

  • Experience with host/memory based forensics and detections.
  • Experience with one or more general purpose coding languages.

About the job

Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

Responsibilities

  • Research new detection techniques to prevent/mitigate abusive activities such as outbound security attacks, botnets, DDoS, and other malicious behaviors which violate Google Cloud Platform's Terms of Service.
  • Develop high fidelity detection to identify malicious activity based on raw network and host level telemetry.
  • Analyze various logs and packets to increase accuracy of detections.
  • Hunt for threats/abusers and respond proactively.
  • Create, develop, and manage tools to collect and process abuse reports and threat intelligence data.
View Full Job Description

About The Company

A problem isn't truly solved until it's solved for all. Googlers build products that help create opportunities for everyone, whether down the street or across the globe. Bring your insight, imagination and a healthy disregard for the impossible. Bring everything that makes you unique. Together, we can build for everyone.

View All Jobs

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug