Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 2 years of experience with cyber security or threat analysis.
- 1 year of experience in incident analysis, malware research, SOC, or any other similar incident response.
- Ability to communicate in English and Spanish fluently to support client relationship management in this region.
- Ability to work non-standard hours and work rotations/shifts, including night shifts as required.
Preferred qualifications:
- Certification in Security+ or similar Cyber Security/Incident Response.
- Experience with automation via coding or scripting.
- Experience analyzing, triaging, and remediating common information security incidents.
About the job
There's no such thing as a "safe system" - only safer systems. Our Security team works to create and maintain the safest operating environment for Google's users and developers. As a Security Analyst, you help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. You will work directly with network equipment and actively monitor systems for attacks and intrusions.The Core team builds the technical foundation behind Google’s flagship products. We are owners and advocates for the underlying design elements, developer platforms, product components, and infrastructure at Google. These are the essential building blocks for excellent, safe, and coherent experiences for our users and drive the pace of innovation for every developer. We look across Google’s products to build central solutions, break down technical barriers and strengthen existing systems. As the Core team, we have a mandate and a unique opportunity to impact important technical decisions across the company.
Responsibilities
- Investigate anomalous activity through manual hunting at Alphabet scale.
- Escalate unusual incidents to Detection and Response teams.
- Lead response efforts to low severity incidents.
- Support the response to high and medium severity security incidents as directed.
- Examine security alerts across Security Information and Event Management (SIEM) and other external alert sources.
