Security Software Engineer, Systemic Remediation, Cloud CISO
Indexed description
- Bachelor's degree or equivalent practical experience.
- 5 years of experience in software development.
- 5 years of experience testing, and launching software products.
- 5 years of experience with software design and architecture.
- 5 years of experience with security engineering, computer and network security and security protocols.
- 3 years of experience working in a complex, matrixed organization involving cross-functional, or cross-business projects.
- Experience in static analysis or dynamic analysis.
- Consulting experience.
- Experience building security tooling.
- Ability to influence others.
- Strong communication skills.
The Cloud Chief Information Security Office Security Engineering team is responsible for ensuring that every Google Cloud product ships as secure as possible. You will do so by increasing the assurance levels of security in the infrastructure underlying all products, increasing the capabilities of each product team to develop more secure products by design and by default, from patterns, tools, and frameworks to increasing the skill level of embedded security leads. Cloud Chief Information Security Office Security Engineering owns and drives the product security strategy for Google Cloud. You will work with almost every aspect of Google’s infrastructure and on solving planet-scale infrastructure security problems that have societal-level impacts.
Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
Responsibilities
- Perform security reviews, research and reproduce vulnerabilities, design secure protocols and systems, and write tests and fuzzers.
- Review and develop secure operational practices, and provide security guidance for engineers and support staff.
- Review designs and drive towards defense in depth and security by default, both with one-time reviews and longer term engagements.
- Look for vulnerabilities with techniques including reverse engineering, fuzzing, and static analysis.
- Respond to vulnerabilities with repros, variant analysis, mitigations, and hardening.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search