Principal Cyber Security Engineer, Public Sector
- Full Time
- Cyber Security
- Remote-US
- $150K - $250K
Remote Job Description
The Google Cloud team helps companies, schools, and government seamlessly make the switch to Google products and supports them along the way. You listen to the customer and swiftly problem-solve technical issues to show how our products can make businesses more productive, collaborative, and innovative. You work closely with a cross-functional team of web developers and systems administrators, not to mention a variety of both regional and international customers. Your relationships with customers are crucial in helping Google grow its Cloud business and helping companies around the world innovate.
Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions.
The US base salary range for this full-time position is $143,000-$219,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.
Responsibilities
- Develop countermeasures to address use cases provided or approved by the government customer.
- Develop functional and effective countermeasures within the environment, adhering to the capabilities of existing tooling.
- Develop countermeasures with flexibility with various persistent platforms.
- Verify and validate developed countermeasures to mitigate undesirable impacts to the platform or other connected systems.
- Document, troubleshoot, and/or configure changes.
Note: Google’s hybrid workplace includes remote and in-office roles. By applying to this position you will have an opportunity to share your preferred working location from the following:
In-office locations: Washington D.C., DC, USA.
Remote location(s): Florida, USA; Virginia, USA.
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 10 years of experience in operations with analysis of TCP/IP network traffic and communication protocols.
- Experience with a scripting language (e.g., Perl, Python, or other scripting language) in an incident handling environment.
- Active US Government Top Secret/Sensitive Compartmentalized Information (TS/SCI) Security Clearance.
Preferred qualifications:
- Certification in one or more of the following technical areas: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), EnCE or equivalent certifications.
- Experience conducting analysis of electronic media, packet capture, log data, and network devices in support of intrusion analysis, or enterprise level information security operations.
- Experience with advanced computer exploitation methodologies, including analysis tools (e.g., Trellix (FireEye), CrowdStrike, Encase or FTK, Helix, Paraben, etc.).
- Ability to make decisions on remediation and countermeasures for information security threats.