Security Consultant, Red Team, Mandiant, Google Cloud

Application Security Consultant, Mandiant, Google Cloud

NOTE:

Google’s hybrid workplace includes remote roles. By applying to this position, you may choose a remote location from the following:
Remote locations:
Alabama, USA;
Arkansas, USA;
Connecticut, USA;
Delaware, USA;
Florida, USA;
Georgia, USA;
Iowa, USA;
Illinois, USA;
Indiana, USA;
Kansas, USA;
Kentucky, USA;
Louisiana, USA;
Massachusetts, USA;
Maryland, USA;
Maine, USA;
Michigan, USA;
Minnesota, USA;
Missouri, USA;
Mississippi, USA;
North Carolina, USA;
North Dakota, USA;
Nebraska, USA;
New Hampshire, USA;
New Jersey, USA;
New York, USA;
Ohio, USA;
Oklahoma, USA;
Pennsylvania, USA;
Rhode Island, USA;
South Carolina, USA;
South Dakota, USA;
Tennessee, USA;
Texas, USA;
Virginia, USA;
Vermont, USA;
Wisconsin, USA;
West Virginia, USA.

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, related technical field, or equivalent practical experience.
• 3 years of experience with pen testing and red‑teaming functions, including network, web application, mobile, cloud, social engineering, scripting, or tool development.
• Experience with tools used for wireless, web application, and network security testing or software/web development.
• Ability to travel up to 30% of the time.

• Offensive security certifications such as OSWE, BSCP, CWEE, OSCP or relevant SANS courses.
• Experience in four or more of the following areas: application security, offensive security testing, application development, source code review, exploit development, network protocols, system and network administration.
• Experience in security consulting.
• Experience with bug bounty programs.
• Experience with AI pen testing.

• Assess and advise clients on technical and process-based controls across environments.
• Perform red and purple team assessments, including adversarial emulation of cyber attacks against customer organizations.
• Conduct external penetration testing, web application, mobile, and wireless security testing.
• Expand the team’s capabilities through tool creation, research on offensive techniques, incorporation of threat-actor intelligence, internal presentations, and knowledge sharing.
• Develop comprehensive and accurate reports and presentations for technical and executive audiences.
• Mentor staff and assist with scoping prospective engagements and leading teams from kickoff through remediation.
• Demonstrate familiarity with offensive security, threat actors, and security best practices.

$112,000 - $162,000 (USD) + 15% bonus target, equity, and benefits.

Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law.

See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.

Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.