Proactive Security Lead, UK Security Operations

Requirements

• Bachelor's degree or equivalent practical experience.
• 5 years of experience in cybersecurity, with an offensive security (e.g., Red Teaming, Penetration Testing, or Adversary Simulation) or threat modeling.
• Experience in a Security Operations Centre (SOC) or similar environment, with modern threat landscapes and attack techniques.
• Experience in technical troubleshooting and writing code in one or more programming languages.
• Experience in threat modeling methodologies (e.g., STRIDE, PASTA, or attack trees) and secure system design principles.
• United Kingdom Security Vetting Developed Vetting (DV) clearance.

Nice to haves

• Certifications in OSCE3, CRTP/CRTE, GIAC GCSA/Kubernetes-related, OSCP, OSCE, CRTO, CISSP, or GIAC (e.g., GPEN, GCTI, GWAPT).
• Experience designing or executing Purple Team exercises, combining offensive tactics with defensive feedback to drive continuous improvement.
• Experience with Kubernetes security, including secure cluster configuration, workload hardening, and threat detection in containerised environments.
• Experience in building or maturing security culture initiatives, including awareness programs, gamified training, or executive engagement.
• Experience with security testing tools and frameworks (e.g., MITRE ATT&CK, Cobalt Strike, Metasploit, Burp Suite, or similar).

What you'll be doing

• Lead Red and Purple Team exercises across the platform, identifying weaknesses and translating findings into actionable improvements.
• Drive proactive security programs within the Security Operations Centre (SOC) to enhance overall security posture.
• Facilitate comprehensive threat modeling sessions, identifying potential vulnerabilities and supporting mitigation strategy development.
• Translate technical security findings into actionable recommendations for relevant stakeholders across the organisation.
• Advocate a strong security culture across Google Public Sector UK, promoting security awareness and best practices.

Perks and benefits

The UK Security Operations (SecOps) team in Google Public Sector offers the opportunity to work on cutting-edge security initiatives in a dynamic environment. As part of Google, you'll have access to competitive compensation, a collaborative work culture, and opportunities for professional growth and development.