- Senior
- Optionales Büro in Ottawa
This is an onsite, client-facing position. This position requires onsite client-facing work 3 days a week in Ottawa.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Google's EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form.
Jetzt bewerben
It is a requirement of the position that you obtain or currently hold a valid Reliability Status screening from the Government of Canada. Please note that information provided to the Canadian Government in connection with the screening is not affiliated/shared with Google. Evidence of the completed screening will be required to be provided directly by you to Google upon the start of your employment, and will not otherwise be shared with Google by the Government of Canada. The level of security screening required may change during employment to meet Google’s current business needs. Failure to obtain or maintain the appropriate clearance and/or customer screening requirements will make you ineligible for the position, which may result in the frustration of your employment and action up to and including termination.
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 5 years of experience in a customer-facing analytical role in cyber security (e.g. Network Forensics Analyst, Threat Intelligence Analyst).
- Experience engaging with, and presenting to, technical stakeholders and executive leaders.
- Experience with project management.
Preferred qualifications:
- 7 years of experience evaluating forensic reports of electronic media, packet capture, log data, malware triage, or enterprise-level information security operations.
- Experience with CTI methodologies and application within cyber security organizations.
- Experience in the analysis of CTI, supporting monitoring, detection, and response capabilities.
- Experience with standard network logging formats, network management systems and network security monitoring systems, and security information and event management.
- Experience in deploying and analyzing data from technical security controls (e.g., web proxy, firewalls, IPS, IDS, enterprise antivirus solutions, network analyzers).
About the job
In this role, you will support Mandiant’s Advanced Intelligence Access (AIA) program. The AIA program provides customers with access to the totality of Mandiant’s Threat Intelligence, including raw data, via an onsite Cyber Analyst. Each Cyber Analyst ensures the delivery of actionable intelligence to the customer’s security or operational environments to drive decision making and action. The Cyber Analyst also acts as a conduit to Mandiant’s extensive network of cyber security, threat intelligence, and information operations professionals.
Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.
Responsibilities
- Evaluate tools and best practices for tracking advanced threats, tools, techniques, and procedures (TTPs) of attacker’s motivations, and industry and attacker trends.
- Perform tactical, and operational research and analysis of adversarial cyber threats.
- Correlate intelligence to develop deeper understandings of tracked threat activity.
- Present tactical and strategic intelligence about threat groups, the methodologies they use, and the motivations behind their activity and convey the importance of findings to a variety of audiences.
- Work with customers to determine their intelligence needs and requirements and prepare and deliver briefings and reports to the customers' executives, security team, and fellow analysts.
