Senior Security Engineer, Enterprise SaaS Security

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
  
• 5 years of experience with security assessments or security design reviews or threat modeling.
  
• 5 years of experience with security engineering, computer and network security and security protocols.
  
• 5 years of coding experience in one or more languages (Python, Go, SQL, Javascript).
• 1 year of experience leading teams in a technical capacity or leading technical risk analysis in an enterprise environment.
  

Preferred qualifications:

• Understanding of federated AuthN/AuthZ technologies (SAML, SCIM, OIDC).
• Understanding of networking concepts (protocols, topologies, encryption).
• Ability to perform technical security assessments of large complex systems.
• Ability to design and develop new security control implementations.

About the job

There's no such thing as a "safe system" - only safer systems. Our Security team works to create and maintain the safest operating environment for Google's users and developers. As a Security Engineer, you help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. Security Engineers work directly with network equipment and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities.

You use your industry experience to own and drive the resolution of complex security incidents, policy questions and technical security issues.

As a Senior Security Engineer on this team, you will act as a technical leader and mentor. You will be responsible for securing Google’s enterprise usage of third-party Software-as-a-Service (SaaS) platforms. You will help scale our capacity for incoming security vulnerabilities, build automated tooling to reduce manual workloads using AI, and drive risk insights and remediations. You will ensure all new SaaS launches are secure by performing security assessments and ensure the adoption of required security controls. You will mentor and guide other engineers, fostering a collaborative environment to achieve collective goals. With your technical foundation and exceptional cross-functional collaboration skills, you will manage complex security issues and operations. You will have a breadth of application security experience such as SaaS or cloud security, API security, authentication and access control, threat modeling, conducting security assessments, etc.

The Core team builds the technical foundation behind Google’s flagship products. We are owners and advocates for the underlying design elements, developer platforms, product components, and infrastructure at Google. These are the essential building blocks for excellent, safe, and coherent experiences for our users and drive the pace of innovation for every developer. We look across Google’s products to build central solutions, break down technical barriers and strengthen existing systems. As the Core team, we have a mandate and a unique opportunity to impact important technical decisions across the company.

Responsibilities

• Own the end-to-end security strategy for high-risk third-party SaaS platforms, identifying and driving solutions for complex, ambiguous security issues.
• Provide technical leadership and mentorship to junior engineers, guiding the development of scalable security controls and fostering a culture of engineering excellence.
• Architect and engineer advanced SaaS Security Posture Management (SSPM) solutions, leveraging AI/ML automation to reduce manual toil and improve operational visibility.
• Lead complex, cross-functional security assessments to derive actionable risk insights, ensuring Google's enterprise usage of SaaS remains resilient against evolving threats.
• Influence the broader SaaS security roadmap by collaborating with cross-functional stakeholders to define policies and drive the adoption of required security controls.