Research new detection techniques to prevent/mitigate abusive activities such as outbound security attacks, botnet, DDoS and other malicious behaviors which violate Google Cloud Platform (GCP’s) terms of service.
Develop fidelity detection to identify malicious activity based on raw network and host level telemetry.
Analyze logs, packets to increase accuracy of detections.
Hunt for threats/abusers and respond.
Minimum qualifications:
Bachelor's degree or equivalent practical experience.
2 years of experience with security assessments, security design reviews or threat modeling.
2 years of experience with security engineering, computer and network security and security protocols.
Preferred qualifications:
5 years of experience with working in security analysis, network security, intrusion detection system, threat intelligence, or threat detection.
Experience with host/memory based forensics and detections.
Experience with analyzing malicious network traffic.
Knowledge of defensive security concepts like adversity tactic and technique, MITRE ATT and CK framework, logging, etc.
Knowledge of networking and core internet protocols (e.g., TCP/IP, HTTP, SSL).
