8 hours ago

Principal Consultant, Application Security, Mandiant

Google

Hybrid
Full Time
CA$156,000
Hybrid

Job Overview

Job TitlePrincipal Consultant, Application Security, Mandiant
Job TypeFull Time
Offered SalaryCA$156,000
LocationHybrid

Who's the hiring manager?

Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.

Uncover Hiring Manager

Job Description

About This Job

As a Principal Consultant, Application Security, Mandiant, you will be responsible for assisting clients in effectively preparing for, proactively mitigating, detecting, and responding to cybersecurity threats. Security consultants possess a strong understanding of IT, operating system and network functionalities, cloud services, enterprise network environments, and how to apply this knowledge to cybersecurity threats.

In this role, you may be tasked with helping clients manage technical and high-profile incidents, performing forensic analyses, hunting for threats, and triaging malware. You might also test client networks, applications, and devices by emulating the latest techniques to help them defend against threats. You will act as the client's technical advocate for information security requirements, providing deep domain understanding. Furthermore, you will articulate and present concepts to business stakeholders, senior management, and technical contributors, effectively leading projects within cross-functional teams.

As a member of the Mandiant proactive services team, you will evaluate and advise clients on technical and process-based controls across various environments. This includes performing web application security assessments and other technical cyber evaluations such as external penetration testing and mobile application testing. You will contribute to team capabilities by creating tools, researching offensive techniques, integrating active threat intelligence, conducting internal briefings, and sharing knowledge. Mandiant, a part of Google Cloud, is a renowned leader in dynamic cyber defense, threat intelligence, and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and business leaders globally. Our combination of recognized front-line breach response experience, nation-state level threat intelligence, and artificial intelligence, coupled with industry-leading security validation, ensures Mandiant is more aware of current advanced threats than any other player.

Minimum Qualifications

  • Baccalauréat en informatique, en systèmes d'information, en cybersécurité ou dans une discipline technique connexe, ou expérience pratique équivalente
  • Cinq ans d'expérience des techniques et des outils utilisés pour l'évaluation de la sécurité des applications Web ou l'évaluation de la sécurité mobile

Preferred Qualifications

  • Certifications relatives à la sécurité offensive, y compris OSWE, BSCP, CWEE, OSCP ou tout cours SANS pertinent
  • Cinq ans d'expérience de l'évaluation et de l'élaboration de solutions de cybersécurité dans plusieurs domaines de la sécurité
  • Deux ans d'expérience dans les programmes de primes aux bogues
  • Expérience dans au moins quatre des domaines suivants : sécurité des applications, tests de sécurité offensive, développement d'applications, examen du code source, développement d'exploitations, protocoles de réseau, administration de systèmes et de réseaux
  • Expérience en matière de services-conseils en sécurité
  • Expérience en développement de logiciels ou Web

Responsibilities

  • Effectuer de manière indépendante des évaluations externes de haute qualité du réseau et des applications Web, et jouer un rôle actif lors des tests d'applications infonuagiques et mobiles
  • Élaborer des rapports et des exposés complets et précis à l'intention de professionnels techniques et de cadres supérieurs
  • Reconnaître et utiliser les tactiques, les techniques et les procédures des pirates informatiques
  • Communiquer efficacement les résultats et la stratégie aux intervenants clients, y compris le personnel technique, la haute direction et les conseillers juridiques
  • Voyager jusqu'à 20 % du temps, selon les besoins

Key Skills/Competency

  • Application Security
  • Penetration Testing
  • Incident Response
  • Threat Intelligence
  • Cybersecurity Consulting
  • Web Application Security
  • Mobile Application Security
  • Vulnerability Assessment
  • Source Code Review
  • Exploit Development

Tags:

Principal Application Security Consultant
application security
penetration testing
incident response
threat intelligence
security assessment
cybersecurity consulting
web security
mobile security
vulnerability management
code review
OSWE
OSCP
SANS
bug bounty
cloud security
network security
operating systems
exploit development
AI
network protocols

Share Job:

How to Get Hired at Google

  • Research Google's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
  • Tailor your resume: Customize your resume to highlight experience in application security, penetration testing, and incident response, using keywords from the Principal Consultant, Application Security, Mandiant job description.
  • Showcase Mandiant expertise: Emphasize any experience with Mandiant services, threat intelligence, or related cybersecurity frameworks in your application.
  • Prepare for technical interviews: Practice problem-solving related to web/mobile security, network protocols, and exploit development, aligning with the Principal Consultant, Application Security, Mandiant role's requirements.
  • Demonstrate leadership & communication: Be ready to discuss how you lead projects, present complex findings to diverse stakeholders, and mentor junior team members, crucial for a Principal Consultant at Google.

Frequently Asked Questions

Find answers to common questions about this job opportunity

Explore similar opportunities that match your background