Google is a leading technology company, and they are seeking a Senior Security Engineer for their Uppercase Research team. In this role, you will help protect network boundaries and maintain the safest operating environment by building and orchestrating autonomous security operations to combat cyber threats.
Responsibilities:
- Build and optimize AI-agent frameworks (such as threat hunting and detection engineering agents) to automate triage, context enrichment, and initial threat analysis
- Construct and manage end-to-end pipelines that autonomously write, test, and tune yet another recursive acronym - log (YARA-L) rules based on emerging threat behavior
- Conduct deep-dive technical analyses of adversary behavior to extract concrete indicators and logic that train machine learning models and ground agentic workflows
- Drive continuous refinement of the rule lifecycle by leveraging advanced LLM architectures to automate regression testing, false-positive reduction, and rule deprecation. Perform data analysis on large threat intelligence datasets to uncover hidden patterns, feed ML pipelines, and expand the knowledge base of autonomous systems
- Create, maintain, and scale the underlying processes and code-driven tooling required to support decentralized, automated security operations
Requirements:
- Bachelor's degree or equivalent practical experience
- 5 years of experience leading security assessments, threat modeling, or security design reviews for systems
- 5 years of coding experience in one or more general purpose languages. (e.g., Python, Golang, Java, C++)
- 5 years of experience with security engineering, computer and network security and security protocols
- Experience designing, building, or implementing LLMs and autonomous agent frameworks to accelerate threat detection lifecycles, automate security operations triage, or orchestrate self-healing detection pipelines
- Experience in security research, advanced threat hunting, and signals development across endpoint or cloud data sources (e.g., Google Cloud, Cloud computing platform, Kubernetes)
- Ability to scope ambiguous security problems, evaluate systemic risks, and communicate technical security strategies effectively to both engineering teams and executive stakeholders