Security Engineer III, Offensive Security
Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
In this role, you will think and act like an attacker to improve Alphabet's ability to detect, respond to and thwart real-world attackers. As a part of the growing Red Team, we are looking for engineers who can perform realistic offensive security exercises to simulate real attacks and to test and improve our detection and response capabilities.The Core team builds the technical foundation behind Google’s flagship products. We are owners and advocates for the underlying design elements, developer platforms, product components, and infrastructure at Google. These are the essential building blocks for excellent, safe, and coherent experiences for our users and drive the pace of innovation for every developer. We look across Google’s products to build central solutions, break down technical barriers and strengthen existing systems. As the Core team, we have a mandate and a unique opportunity to impact important technical decisions across the company.
In this role, you will think and act like an attacker to improve Alphabet's ability to detect, respond to and thwart real-world attackers. As a part of the growing Red Team, we are looking for engineers who can perform realistic offensive security exercises to simulate real attacks and to test and improve our detection and response capabilities.The Core team builds the technical foundation behind Google’s flagship products. We are owners and advocates for the underlying design elements, developer platforms, product components, and infrastructure at Google. These are the essential building blocks for excellent, safe, and coherent experiences for our users and drive the pace of innovation for every developer. We look across Google’s products to build central solutions, break down technical barriers and strengthen existing systems. As the Core team, we have a mandate and a unique opportunity to impact important technical decisions across the company.
- Identify security issues and implement and design security controls, tools, and services to improve security systems and processes.
- Collaborate with a team of highly skilled hackers to plan and lead realistic offensive security exercises.
- Build tools and infrastructure to support our exercises.
- Design controls and improvements to sharpen capabilities to defend against attackers in close co-operation with the teams responsible for implementing them.
- Document and present results to a variety of target audiences, ranging from highly technical engineers over non-technical subject matter experts to executive leadership.
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 2 years of experience conducting security assessments, penetration testing, threat modeling, or vulnerability testing.
- 2 years of experience with security engineering, computer and network security and security protocols.
- 2 years of coding experience in one or more general purpose languages (e.g., C++, Go, or Python).
Preferred qualifications:
- Relevant work experience in penetration testing or red teaming.
- Software development experience in C++, Go, or Python.
- Foundation in, and in-depth technical knowledge of, security engineering, computer and network security, authentication, security protocols and applied cryptography.
- Hands-on operational experience detecting and responding to facing top-tier adversaries in defense of an international enterprise environment.