Minimum qualifications:

+ Bachelor's degree or equivalent practical experience.

+ 2 years of experience with security assessments, security design reviews or threat modeling.

+ 2 years of experience with security engineering, computer and network security and security protocols.

+ 2 years of experience with coding in one or more languages.

Preferred qualifications:

+ Experience with Google access control systems (e.g., UberProxy, BeyondCorp).

+ Experience with security principles like AuthN/AuthZ (e.g., ACL management).

+ Knowledge of threat models for various corporate user/account types.

Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal). The Core team builds the technical foundation behind Google’s flagship products. We are owners and advocates for the underlying design elements, developer platforms, product components, and infrastructure at Google. These are the essential building blocks for excellent, safe, and coherent experiences for our users and drive the pace of innovation for every developer. We look across Google’s products to build central solutions, break down technical barriers and strengthen existing systems. As the Core team, we have a mandate and a unique opportunity to impact important technical decisions across the company.

The US base salary range for this full-time position is $141,000-$202,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google (https://careers.google.com/benefits/) .

+ Create and assess infrastructure designs, systems, and access policy enforcement points across all levels of the stack with a focus on lower layers.

+ Ensure infrastructure is resilient against attacks and abuse.

+ Make technical, process, and project contributions to identifying risks, improving the security posture of Google, and enabling management of security controls for Alphabet's use.

+ Write feature requests and influence security improvements in the products to enable secure enterprise use at scale.

+ Consult on topics of network and Operational Technology (OT) infrastructure, authentication, authorization, access control, and risk.

Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also https://careers.google.com/eeo/ and https://careers.google.com/jobs/dist/legal/OFCCP_EEO_Post.pdf If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form: https://goo.gl/forms/aBt6Pu71i1kzpLHe2.