Security Engineer, Hardware Security, Cloud CISO

Security Engineer, Hardware Security, Cloud CISO

Join to apply for the Security Engineer, Hardware Security, Cloud CISO role at Google.

Job Details

1 day ago Be among the first 25 applicants.

Get AI-powered advice on this job and more exclusive features.

Minimum Qualifications

• Bachelor's degree in Computer Science, a related field, or equivalent practical experience.
• 2 years of experience in the Security field.
• Experience in a Reverse Engineering role.
• Experience with Hardware System Architecture.
• Experience with Firmware.

Preferred Qualifications

• Experience with hardware or firmware security.
• Understanding of both offensive and defensive security methods.
• Ability to influence others without authority.
• Excellent communication and documentation skills.

About the Job

Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. They also collaborate with software engineers to identify and fix security flaws and vulnerabilities.

The Off the Shelf (OTS) Hardware Security team focuses on securing the off-the-shelf hardware/firmware used by Cloud products. We work with external vendors, internal teams, and industry bodies to protect devices against hardware and firmware security threats.

We are committed to protecting the hardware/firmware used by Google Cloud to ensure trustworthiness across the stack.

Google Cloud helps organizations digitally transform their businesses with enterprise-grade solutions leveraging cutting-edge technology, supporting sustainable development, and serving customers in over 200 countries.

Responsibilities

• Identify critical hardware/firmware devices within Cloud for review, including Hardware Security Modules, Servers, Switches, and SSDs.
• Perform comprehensive hardware and firmware security reviews and write detailed threat models and reports.
• Communicate vulnerabilities to vendors and collaborate on mitigation strategies.
• Partner with vendors to advocate for design changes based on risk assessments.
• Develop attack scenarios, mitigation strategies, and ensure consistent methodologies within the team.

Additional Information

Google is an equal opportunity employer and values diversity. We provide accommodations for applicants with disabilities. For more information, see Google's EEO Policy and EEO Law.