+ BS degree in Computer Science or related technical field, or equivalent practical experience.
+ 4 years of digital forensic analysis experience. Threat landscape experience including attack types and malware capabilities.
+ Experience with security of two or more operating systems (e.g. Android, Linux, Mac OS, Windows).
+ Coding/scripting experience in one or more general purpose languages.
+ MS degree in Computer Science or related field.
+ 5 years of experience with digital forensic analysis.
+ Experience with, and detailed understanding of, digital forensics and incident response tools such as GRR, Rekall, plaso (log2timeline), The Sleuth Kit (TSK), libyal, or alternatives like Guidance Encase, AccessData FTK, X-Ways Forensics, Cellebrite, Volatility, Mandiant MIR, etc.
+ Experience with reverse engineering or firmware analysis
+ Experienced coding in Python, Go or Java, proficiency with data analysis tools such as Spark, Hadoop, Tableau and R
There’s no such thing as a “safe system” – only safer systems. Our Security team works to create and maintain the safest operating environment for Google’s users and developers. As a Security Engineer, you help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. Security Engineers work hands-on with network equipment and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
You use your industry experience to own and drive the resolution of complex security incidents, policy questions and technical security issues.
The Forensics team’s core responsibility is to investigate potential information security intrusions and breaches on our corporate, production, and acquisition environments. Members of the team are involved in analyzing root causes and trends of incidents and work closely with engineers to get flaws and systemic issues fixed.
As part of the Forensics team, you will actively participate in building advanced, large scale, and sometimes highly custom, digital forensic tooling to analyze malicious activity on Google’s networks. The focus of our tooling is both internal and open source.
At Google, our users come first, and the Systems Infrastructure team is at the heart of that promise. We build the technologies that transform the way we think about doing business. Whether working on our cloud systems, researching the latest in computer technology or keeping Google’s internal systems humming, Googlers and users alike rely on us to keep things running. We’re back-end experts: protecting your privacy and ensuring your security.
+ Perform investigations on a wide variety of security and privacy events from various sources to determine whether they pose a threat to Google.
+ Participate in large-scale security and privacy incidents, write incident reports, and participate in post-mortems.
+ Participate in internal training to make sure forensic best practices are followed.
+ Work with teams from around Google to discover new investigative and forensics capabilities.
+ Develop internal and open source tools used to respond to incidents (e.g. digital forensic toolkits) to support Google’s unique environment.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Google’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing this form.