Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 5 years of experience with security assessments or security design reviews or threat modeling.
- 5 years of experience with security engineering, computer and network security and security protocols.
- 5 years of coding experience in one or more general purpose languages.
- 1 year of experience leading teams in a technical capacity or leading technical risk analysis in an enterprise environment.
- 6 years of experience in Parser development, Security Analysis, Networking, Windows, TCP/IP, Security and Command-Line Interface.
- Experience in SIEM and SOAR automation for efficient SOC operations.
Want more jobs like this?
Get jobs delivered to your inbox every week.
About the job
Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
Google Cloud accelerates every organization's ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
Responsibilities
- Lead parser design and development of security log types and log formats.
- Test and Debug parser issues related to mappings, performance and validations.
- Guide and lead vendors teams for development of gold standard parsers for security logs.
- Develop and maintain high quality fetchers and log parsers for processing petabytes of heterogeneous data from a wide variety of data sources ranging from networking, traffic, operating system, endpoint, application level, user, identity, authentication, cloud infrastructure, alerting, threat intelligence, email, malware/anti-virus data and more.