Cyber Defense Validation Engineer, Mandiant, Google Cloud
Google•Published 23 hours ago•First seen 23 hours ago
Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
As a Cyber Defense Validation Engineer, you will be responsible for enabling the technology and tools required to effectively automate and orchestrate daily tasks within a Cyber Defense Center (CDC). You will collaborate with multiple cross-functional teams like Mandiant Architects, Mandiant Analysts, Client Information Technology (IT) resources, and other business resource owners, to define requirements and deliver recommendations focused on technologies, processes, scripting, and improvements required to support automation tasks within a CDC.
In this role, you will work as a member of a technical team in a rapidly changing environment, administer a variety of information security technologies, learn new emerging technologies, and be passionate about protecting customer data and corporate assets from the various threats facing multiple industries.Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.
As a Cyber Defense Validation Engineer, you will be responsible for enabling the technology and tools required to effectively automate and orchestrate daily tasks within a Cyber Defense Center (CDC). You will collaborate with multiple cross-functional teams like Mandiant Architects, Mandiant Analysts, Client Information Technology (IT) resources, and other business resource owners, to define requirements and deliver recommendations focused on technologies, processes, scripting, and improvements required to support automation tasks within a CDC.
In this role, you will work as a member of a technical team in a rapidly changing environment, administer a variety of information security technologies, learn new emerging technologies, and be passionate about protecting customer data and corporate assets from the various threats facing multiple industries.Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.
The US base salary range for this full-time position is $141,000-$202,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.
Responsibilities
- Identify issues in customer security controls and how those impact the customer's Cyber Defense strategy, then formulate strategies for improvement through gap analysis and recommendations.
- Create tests focused on exercising network, endpoint and cloud controls to validate expected or unexpected behaviors as they relate to prevention and detection capabilities.
- Provide validation testing expertise to the to assist in identification and remediation of security control gaps.
- Engage and collaborate with client stakeholders and other groups within the customer environment to drive resolution for security issues.
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 2 years of experience in an offensive or defensive security role with experience in Mitre ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) and attacker tools.
- 2 years of experience with security engineering, computer and network security and security protocols.
- 2 years of coding experience in one or more general purpose languages.
Preferred qualifications:
- Experience working with security controls in either an endpoint (EDR) or network (IDS, IPS) capacity.
- Experience leading teams within the specialized area of previous work (e.g., scoping, planning, executing, reporting or remediating the results of the described area of specialization).
- Experience in scripting (e.g., Python) or in software development.