Security Engineer, Red Team
Google · Bengaluru, Karnataka, India
- On site
- Full-time
- $150,000 / year
- Bengaluru, Karnataka, India
Job highlights
- Perform Red and Purple Team assessments for clients.
- Emulate cyber attacks and conduct security testing.
- Develop new security tools and research techniques.
- Advise clients on security best practices.
- Report findings to technical and executive audiences.
About the role
About The Job
In this role, you will be responsible for providing cybersecurity consulting services and support to the clients, including assessing and advising clients on both technical and process-based controls for all manner of environments. You will perform Red and Purple Team assessments, including end-to-end adversarial emulation of cyber attacks against customer organizations, and other technical cyber assessments including external penetration, web application, mobile and wireless security testing. You will expand the team’s capabilities through tool creation, research on offensive techniques, incorporation of threat actor intelligence, internal presentations and knowledge share. You will develop comprehensive and accurate reports and presentations for both technical and executive audiences, and act as a trusted advisor to C-level, security leaders and other customer stakeholders. You will need to have an understanding and familiarity with offensive security, threat actors, security best practices in general.
Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.
Responsibilities
- Interface with clients to address concerns, issues, or escalations, track and drive to closure any issues that impact the engagements and its value to clients.
- Advise clients on security best practices for remediating discovered issues.
- Collaborate with internal teams to expand capabilities to deliver further value to clients.
- Perform offensive technical cyber security engagements of varied nature.
Key skills/competency
- Red Team Security Engineer
- Cybersecurity Consulting
- Adversarial Emulation
- Penetration Testing
- Offensive Security
- Threat Intelligence
- Tool Development
- Security Best Practices
- Incident Response
- Report Writing
Skills & topics
- Security Engineer
- Red Team
- Penetration Testing
- Cybersecurity
- Offensive Security
- Adversarial Emulation
- Threat Intelligence
- Mandiant
- Python
How to get hired
- Tailor your resume: Highlight relevant offensive security certifications and experience in tool creation, network protocols, and threat intelligence for the Red Team Security Engineer role.
- Showcase your skills: Emphasize your experience in adversarial emulation, penetration testing, and advising clients on security best practices.
- Prepare for technical interviews: Be ready to discuss your experience with Python, C#, network protocols, and system administration.
- Understand Google Cloud/Mandiant: Research Mandiant's leadership in cyber defense, threat intelligence, and incident response services.
- Communicate effectively: Prepare to demonstrate your excellent communication and public speaking skills, crucial for client interactions.
Technical preparation
Behavioral questions
Frequently asked questions
- What are the minimum qualifications for the Red Team Security Engineer role at Google?
- The minimum qualifications include a Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related technical field, or equivalent practical experience. Additionally, relevant offensive security certifications (e.g., OSCE, OSEP, OSCP) and experience in creating security tools are required. You'll also need experience in four or more areas such as network protocols, threat intelligence analysis, system/network administration, project management, application development, incident response processes, source code review, and reverse engineering.
- What type of assessments will I perform as a Red Team Security Engineer at Google?
- As a Red Team Security Engineer, you will perform Red and Purple Team assessments, which include end-to-end adversarial emulation of cyber attacks against customer organizations. You will also conduct other technical cyber assessments such as external penetration testing, web application security testing, mobile security testing, and wireless security testing.
- What programming languages are preferred for the Security Engineer, Red Team position at Google?
- While not strictly required, experience with programming languages like Python and C# is preferred, especially for developing security tools and understanding the underlying code. This is part of the preferred qualifications for the role.
- How does Mandiant contribute to Google Cloud's cybersecurity offerings?
- Mandiant, part of Google Cloud, is a leader in cyber defense, threat intelligence, and incident response. Their expertise comes from responding to complex breaches, leveraging nation-state grade threat intelligence, and employing machine intelligence, ensuring Google Cloud stays ahead of advanced threats.
- What are the potential work locations for this Red Team Security Engineer job at Google?
- By applying to this position, you will have the opportunity to share your preferred working location from Bengaluru, Karnataka, India; New Delhi, Delhi, India; Hyderabad, Telangana, India; or Mumbai, Maharashtra, India.
- Besides technical skills, what soft skills are important for a Red Team Security Engineer at Google?
- Excellent communication, collaboration, and public speaking skills are highly valued. You will need to develop comprehensive reports and presentations for both technical and executive audiences, acting as a trusted advisor to C-level executives and security leaders.