Google Hiring for Security Engineer, Trust & Safety at Sunnyvale, CA Full Time
Minimum qualifications:
- Bachelor’s degree in Computer Science, Information Security or a related discipline, or equivalent practical experience.
- Experience constructing novel and creative attack scenarios, identifying, triaging, or remediating abuse issues or business logic vulnerabilities.
- Experience programing in Python, C/C++, or Go.
Preferred qualifications:
- Experience managing cloud compute resources or building out and coordinating attacking infrastructure.
- Experience deploying and coordinating malware agents via C2.
- Experience conducting adversarial testing against wireless protocols (e.g. WiFi).
- Experience with Open Source Intelligence/OSINT tools and methodologies.
- Excellent documentation skills and verbal communication skills.
About the job
In this role, you will have the opportunity to use your skillset to protect Google and its customers. You will be tasked with conducting simulated attacks that leverage Google products and services in order to protect customer data, Google assets, compute resources, and more. Your daily work will be to identify and exploit abuse risks in long-running red team scenarios, then communicate your findings to the owners of the affected codebase. Leverage your creativity and technical expertise to discover novel attack vectors before bad actors do.
At Google we work hard to earn our users’ trust every day. Trust & Safety is Google’s team of abuse fighting and user trust experts working daily to make the internet a safer place. We partner with teams across Google to deliver bold solutions in abuse areas such as malware, spam and account hijacking. As a diverse team of Analysts, Policy Specialists, Engineers, and Program Managers, we work to reduce risk and fight abuse across all of Google’s products, protecting our users, advertisers, and publishers across the globe.
Responsibilities
- Identify abuse vectors in Google products and services using both custom-built and publicly-available tools alongside manual testing.
- Construct novel and creative attack scenarios that leverage Google products for malicious use.
- Triage abuse issues submitted to the Google Vulnerability Rewards Program.
- Stay up-to-date on the latest bad actor methodology and tooling.
- Communicate and demonstrate abuse issues to software engineering teams.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Google’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form.