Staff Security Engineer

Requirements:

• Bachelor's degree or equivalent practical experience.
• 8 years of experience with security assessments or security design reviews or threat modeling.
• 8 years of experience with security engineering, computer and network security, and security protocols.
• 8 years of coding experience in one or more general-purpose languages.
• 3 years of experience leading teams in a technical capacity or leading technical risk analysis in an enterprise environment.

Nice to haves:

• Technical Security Certifications (OSCP, SANS-SEC460/SEC542/SEC560/SEC588, etc.).
• Experience in development with a focus on Secure Software Development Lifecycle (SSDLC).
• Experience in security skills (e.g., analysis, debugging, tracing).
• Understanding of full software stack from devices (embedded, mobile, web) to frontend serving stack, back-end, video streaming systems, global networking, crypto, protocols.
• Ability to lead teams of people in ambiguous situations through influence and not authority.
• Excellent communication skills and a data-driven problem-solving approach towards complex challenges.

What you'll be doing:

• Identify security issues and implement and design security controls, tools, and services to improve security systems and processes.
• Lead the security strategy for YouTube. Review and develop secure operational practices, and provide security guidance for engineers and support staff.
• Lead and consult on security incidents across YouTube products. Respond to vulnerabilities with repos, mitigation, and hardening.
• Engage with pen testing teams to identify vulnerabilities and use techniques including reverse engineering, fuzzing, and static analysis.
• Review designs for security gaps, both with one-time and longer-term engagements. Explore foundational/Large Language Model (LLM) models for identifying security gaps in product areas.

Perks and benefits:

• Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.
• Google is proud to be an equal opportunity and affirmative action employer.
• If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.
• Google is a global company and, English proficiency is a requirement for all roles unless stated otherwise in the job posting.