Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 1 year of experience with security assessments or security design reviews or threat modeling.
- 1 year of coding experience in one or more general purpose languages.
- 2 years of experience in responding to security issues in goal-rich environments, analyzing security threats, front-line analysis and response.
- Experience analyzing the security of systems (penetration testing, Web Application security testing, vulnerability scanning, threat modeling, etc).
- Understanding of web serving (HTTP, TCP, JavaScript).
- Expertise with malware analysis, including investigations of web based exploits.
Want more jobs like this?
Get jobs delivered to your inbox every week.
About the job
There's no such thing as a "safe system" - only safer systems. Our Security team works to create and maintain the safest operating environment for Google's users and developers. As a Security Engineer, you help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. Security Engineers work directly with network equipment and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
You use your industry experience to own and drive the resolution of complex security incidents, policy questions and technical security issues.
In partnership with developers, analysts, and product managers, this team provides unique threat intelligence reports/threat actor tracking, disruption and builds a scaled threat intelligence platform to advise on anti-abuse strategies in Google Ads and third-party ad products.
Responsibilities
- Perform investigations on a wide variety of events to determine whether it poses a threat to Google users.
- Identify, analyze, and document signals, malicious behaviors, and threat reports related to trends and developments in adversary tactics, techniques, and procedures.
- Build/Improve tools for analyzing malvertising and other ad abuse attacks, identifying threats and tracking adversaries.
- Own the analysis efforts of one or more threat actors, and serve as a subject matter expert on how actors might affect Google and our users.
- Identify vulnerabilities in various ad products and assess risk of new and existing products.