Cloud Security Platform Analyst, Google Public Sector

Minimum qualifications:

• Bachelor’s degree or equivalent practical experience.
  
• 6 years of experience in technical troubleshooting, and managing internal/external partners or customers.
  
• 6 years of experience in system design or in one programming language (Java, C++, Python, etc.).
  
• Experience with network forensics, malware triage analysis, cloud forensics, and disk and memory forensics.
  
• Experience working with incident response investigations, analysis, and containment actions.
  
• Secret US Government Security clearance.
  

Preferred qualifications:

• Experience in SIEM event analysis, triage, and investigation.
• Experience providing technical guidance and support to TIER 1 analysts.
  
• Knowledge of security event management, leveraging common support systems (e.g. ServiceNow) to document and manage the lifecycle of an incident.
  
• Proven ability to conduct comprehensive security impact assessments, identify potential risks, and produce detailed, actionable reports, including understanding of industry standards and regulatory compliance requirements.
  
• Expertise in developing technical requirements for Security tooling, ensuring alignment with security objectives and project goals, and familiarity with agile development methodologies and collaboration tools.
  
• Ability to effectively mentor and train team members.
  

About the job

We are seeking a talented and experienced Cloud Security Platform Analyst to safeguard our Google Cloud environment. You will deploy and manage security tools, develop monitoring strategies, and lead security incident investigations and forensic analysis in Google Cloud Platform (GCP) and Workspace. You'll actively participate in incident response and collaborate with team members to develop and maintain robust security best practices and procedures.

Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions.

The US base salary range for this full-time position is $142,000-$211,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Collaborate with internal SOC teams and customers to drive effective cloud security monitoring and incident response.
• Develop and mature incident response protocols tailored for cloud security events, minimizing impact and recovery time.
• Create and refine operational playbooks for cloud security investigations, threat hunting, and incident triage.
• Monitor and analyze cloud security telemetry from SIEM, CASB, CSPM, and other security tools to detect and respond to threats.
• Lead incident response efforts for cloud-related security events, conducting thorough analysis and root cause investigations.