Security Engineer, Enterprise Infrastructure Protection by Google

Job Description

About the job:

There’s no such thing as a “safe system” – only safer systems. Our Security team works to create and maintain the safest operating environment for Google’s users and developers. As a Security Engineer, you help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. Security Engineers work directly with network equipment and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

You use your industry experience to own and drive the resolution of complex security incidents, policy questions and technical security issues.

The Enterprise Infrastructure Protection (EIP) team is responsible for protecting Google’s enterprise environment from advanced attackers. That means our engineers have a wide range of technical skills for designing and building innovative ways to protect the diverse set of client, mobile, and server platforms our enterprise runs on, as well as ensuring the security of the underlying management and access infrastructure. We focus on building it right and opening up those designs and code to the world.

Minimum qualifications:

• Bachelor’s degree in Computer Science, a related technical field, or equivalent practical experience.
• 3 years of experience with security in attacks and mitigation methods.

Preferred qualifications:

• Master’s degree in Computer Science or a related field.
• Experience coding in one or more languages (e.g., Python, Go, SQL, Javascript).
• Understanding of federated authentication/authorization technologies (e.g., SAML, SCIM, OIDC).
• Understanding of networking concepts (e.g., protocols, topologies, encryption).
• Ability to perform technical security assessments of large complex systems.
• Ability to design and develop new security control implementations.

Responsibilities:

• Design infrastructure and drive its implementation to protect Google networks and systems.
• Provide security expertise and guidance to a diverse set of Google engineering and business teams.
• Conduct security reviews of core corporate and production infrastructure.
• Drive enterprise focused security improvements to Google products and services.
• Build security tools and processes using Python or Go for critical infrastructure protection, monitoring, and remediation.