Security Analyst, Cloud Threat Detection

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
• 4 years of experience working in one or more of the following areas- security analysis, network security, intrusion detection system, threat intelligence, threat detection.
• 2 years of experience as a technical security professional, with digital forensics or systems administration.
• Experience with executive or customer stakeholder management and communication.
• Experience with a data-driven approach towards solving information security challenges.

Preferred qualifications:

• Master's degree in Computer Science or a related field.
• Experience with digital forensics.
• Knowledge of defensive security concepts such as adversity tactic and technique, MITRE ATT&CK framework, logging etc.
• Knowledge of networking and core internet protocols(TCP/IP, HTTP, SSL) and analyzing malicious network traffic.
• Excellent organizational and multitasking skills.

About the job

Product Security Engineering (PSE) is the team within the Cloud CISO organization responsible for helping ensure every product Cloud ships is as secure as it can be and increasing the assurance levels of security in the infrastructure underlying all our products. This team will also focus on increasing the capabilities of each product team to develop more secure products by design and by default, from patterns, tools and frameworks to increasing the skill level of embedded security leads.
In this role, you will be part of the team that is responsible for protecting Google and its users from attacks and abuses originating from Google Cloud Platform. You will ensure trust and reputation not only for this product, but also for Google as a broader brand and company. You will work globally and cross-functionally with several internal stakeholders.Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
In this role, you will be part of the team that is responsible for protecting Google and its users from attacks and abuses originating from Google Cloud Platform. You will ensure trust and reputation not only for this product, but also for Google as a broader brand and company. You will work globally and cross-functionally with several internal stakeholders.In this role, you will be part of the team that is responsible for protecting Google and its users from attacks and abuses originating from Google Cloud Platform. You will ensure trust and reputation not only for this product, but also for Google as a broader brand and company. You will work globally and cross-functionally with several internal stakeholders.In this role, you will be part of the team that is responsible for protecting Google and its users from attacks and abuses originating from Google Cloud Platform. You will ensure trust and reputation not only for this product, but also for Google as a broader brand and company. You will work globally and cross-functionally with several internal stakeholders.

Responsibilities

• Research new detection techniques to prevent/mitigate abusive activities such as outbound security attacks, botnet, DDoS and other malicious behaviors which violate GCP’s Terms of Service.
• Develop high fidelity detection to identify malicious activity based on raw network and host level telemetry.
• Analyze various logs, packets to increase accuracy of detections.
• Hunt for threats/abusers and respond proactively.