Insider Risk and Cyber Security Investigator Analyst
- linkCopy link
- emailEmail a friend
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 10 years of experience implementing security resilience programs impacting teams across multiple regions.
- 5 years of experience building insider threat programs to include implementation or assessment of security controls, leading investigations, and use and system administration of insider risk threat tools (e.g., SIEM, DLP, EDR, and UBA).
- Active US Government Top Secret Security Clearance with ability to upgrade to Sensitive Compartmentalized Information (TS/SCI) Security Clearance.
Preferred qualifications:
- Experience in designing and delivering tabletop exercises, developing insider use cases, and aligning technical tool sets.
- Certification in Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH).
- Experience in designing and delivering insider risk and counter intelligence training programs.
- Experience building roadmaps, driving requirements, and executing engagements for enterprise clientele or the US Government.
- Knowledge of cyber security operations, event monitoring, backup tooling, and SIEM tools.
- Knowledge in collecting, analyzing, investigating, and escalating security events; responding to insider incidents, or collecting, analyzing, and disseminating insider risk intelligence.
About the job
Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal).
In this role, you will serve as an insider risk and cyber security subject matter expert who supports assists in building or maturing externally facing commercial and government customer insider threat programs. You will leverage the full suite of products and services offered to external customers to enhance the internally facing insider risk that is responsible for safeguarding Google Public Sector's data, systems, and people from the risks posed by insider threats. You will detect, respond, and investigate computer or cyber security incidents, data source analysis, threat hunting, and the implementation of tools and technologies used for enterprise security. You will develop counter intelligence awareness training and reporting.
Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions.
The US base salary range for this full-time position is $150,000-$225,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
Responsibilities
- Conduct insider risk and cyber security incident analysis and resulting investigations to include intelligence collection and forensics activities leveraging DLP, UBA, SIEM, EDR, and Mandiant proprietary tools.
- Provide guidance on building and/or maturing insider threat programs, detecting and responding to computer security incidents, and implementation of tools and technologies used for enterprise security.
- Provide expert level knowledge of tools and technologies used for insider risk and cyber security investigations.
- Evaluate internal GPS and external client needs, coordinate design for an insider threat solution, and clearly communicate the value proposition of implementation.
Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.
If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.