Senior Security Engineer, Operational Technology, Cloud CISO - Google
Reston, VA
About the Job
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 5 years of experience with security assessments or security design reviews or threat modeling.
- 5 years of experience with security engineering, computer and network security and security protocols.
- 5 years of coding experience in one or more general purpose languages.
- 3 years of experience in industrial control systems (ICS) and operational technology (OT) security.
- 1 year of experience leading teams in a technical capacity or leading technical risk analysis in an enterprise environment.
Preferred qualifications:
- OT Security Certifications.
- Experience with security assessments and pen testing for ICS/OT environments.
- Familiarity with regulatory and industry standards (e.g., NIST Cybersecurity Framework, ISA/IEC 62443, NERC CIP).
- Understanding of ICS/OT protocols, architectures, and devices (e.g., Modbus, DNP3, OPC, PLCs, SCADA, RTUs).
About the job
Our Security team works to create and maintain the safest operating environment for Google's users and developers. Security Engineers work with network equipment and actively monitor our systems for attacks and intrusions. In this role, you will also work with software engineers to proactively identify and fix security flaws and vulnerabilities.
We help Google Data Centers Product Design teams and Operation teams to securely design, deploy and maintain operational technology (OT) products and architectures. We do this by recommending secure engineering practices in the operational OT and industrial control systems (ICS) space to avoid the introduction of vulnerabilities and security design flaws, and by increasing the security of devices.
Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
Responsibilities
- Conduct comprehensive security assessments of existing ICS/OT environments to identify vulnerabilities, risks, and non-compliance with Google standards.
- Harden ICS/OT devices, networks, and applications to mitigate potential threats and vulnerabilities.
- Design and implement security architectures, controls, and processes to enhance the overall security posture of ICS/OT systems.
- Monitor and evaluate the effectiveness of security controls and processes.
- Research and recommend new security technologies and solutions to enhance the ICS/OT security program.