Senior Incident Response Security Consultant, Mandiant, Google Cloud
Google · Arizona, United States | California, United States | New Mexico, United States
About this role
Google is hiring a senior-level Security Analyst based in Arizona, United States | California, United States | New Mexico, United States. The posting calls out experience with Security, Incident Response, GCP and roughly 5+ years of relevant work. Compensation is listed at $138,000–$201,000 per year.
- Role
- Security Analyst
- Function
- security
- Level
- senior
- Track
- Individual contributor
- Employment
- Full-time
- Location
- Arizona, United States | California, United States | New Mexico, United States
- Experience
- 5+ years
- Posted
- Jul 7, 2026
Job description
from Google careersAs an Incident Response Consultant, you will provide industry-leading incident response, assessment, transformation, managed detection and response, and training services with in-depth tactical support. You will help organizations effectively detect and respond to threats and reduce the overall impact of business risk before, during, and after an incident. You will be able to resolve security incidents quickly, effectively and at scale with complete incident response including investigation, containment, remediation, and crisis management. In this role, you will work on engagements including assisting clients in navigating technically high-profile incidents, performing forensic analysis, threat hunting, and malware triage.
US: $138000 - $201000 (USD) + 15% bonus target + equity + benefits
Learn more about benefits at Google.
Responsibilities
- Collaborate with internal and customer teams to investigate and contain incidents.
- Recognize and codify attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs) that can be applied to current and future investigations.
- Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations.
- Lead client-facing incident response engagements, examine cloud, endpoint, and network-based sources of evidence.
- Develop comprehensive and accurate reports and presentations for both technical and executive audiences. Communicate and discuss findings and strategy with internal stakeholders including leadership and technical team members.
Minimum qualifications:
- Bachelor's degree in Computer Science, Information Systems, Cybersecurity, related technical field, or equivalent practical experience.
- 5 years of experience working end-to-end incident response investigations, analysis, or containment actions.
- 5 years of investigative experience with network forensics, malware triage analysis, cloud forensics, or disk and memory forensics.
- Ability to travel up to 30% of the time.
Preferred qualifications:
- Certifications in cloud platforms.
- Experience in security competitions, Capture the Flags (CTFs) or testing platforms such as Hack the Box, TryHackMe, Overthewire, etc.
- Ability to communicate investigative findings and strategies to technical staff, executive leadership, legal counsel, and internal and external clients.
- Excellent time and project management skills.