Security Analyst I, Threat Detection (English, Spanish)
Job Type
Job Details
Please submit your resume in English - we can only consider applications submitted in this language.
Only applications of candidates with Mexican citizenship will be evaluated for this role in compliance with the provisions of Article 7 of the Federal Labor Law.
Minimum qualifications:- Bachelor's degree or equivalent practical experience.
- 1 year of experience in data analysis, including identifying trends, generating summary statistics, and drawing insights from quantitative and qualitative data.
- 1 year of experience managing projects and defining project scope, goals, and deliverables.
- Ability to communicate in English and Spanish fluently to support client relationship management in this region.
- Ability to work non-standard hours and work rotations/shifts, including night shifts as required.
Preferred qualifications:
- Certification in Security+ or similar Cyber Security/Incident Response.
- Experience with automation via coding or scripting.
- Experience analyzing, triaging, and remediating common information security incidents.
- Understanding of common attacker tactics, tools, and techniques.
- Ability to work separately, prioritize, and multitask.
- Excellent problem-solving and investigative skills.
The Core team builds the technical foundation behind Google’s flagship products. We are owners and advocates for the underlying design elements, developer platforms, product components, and infrastructure at Google. These are the essential building blocks for excellent, safe, and coherent experiences for our users and drive the pace of innovation for every developer. We look across Google’s products to build central solutions, break down technical barriers and strengthen existing systems. As the Core team, we have a mandate and a unique opportunity to impact important technical decisions across the company.
- Search for anomalous activity via manual hunting at Alphabet scale.
- Escalate complex/unusual incidents to Detection and Response teams.
- Lead response efforts to low severity incidents.
- Support the response to high and medium severity security incidents as directed.
- Analyze security alerts in Security Information and Event Management (SIEM) and other external alert sources.