Incident Response Consultant, Google Public Sector
Company: Google
Location: Reston
Posted on: April 2, 2026
|
|
|
Job Description:
info_outline X Note: By applying to this position you will have
an opportunity to share your preferred working location from the
following: Reston, VA, USA; Austin, TX, USA; New York, NY, USA;
Sunnyvale, CA, USA; Washington D.C., DC, USA . Minimum
qualifications: Bachelor's degree or equivalent practical
experience. 2 years of experience with security assessments or
security design reviews or threat modeling. 2 years of experience
working in end-to-end enterprise incident response investigations,
including forensic analysis or containment activities. 2 years of
coding experience in one or more general purpose languages. Must
possess an active Top Secret security clearance. Preferred
qualifications: Certifications related to digital forensics and
incident response including GCFA, GCFE, GCIH, GREM, or equivalent
certifications. Experience in security competitions, Capture the
Flags (CTFs), or testing platforms such as Hack The Box, TryHackMe,
OverTheWire, etc. Knowledge of network security architecture,
network protocols, network devices, computer security devices,
secure architecture and system administration in support of
computer forensics and network security operations. Ability to
manage project timelines, follow methodologies and create
deliverables. Ability to professionally communicate investigative
findings and strategies to technical staff, executive leadership,
legal counsel, and internal and external clients, verbally and in
writing. About the job Our Security team works to create and
maintain the safest operating environment for Google's users and
developers. Security Engineers work with network equipment and
actively monitor our systems for attacks and intrusions. In this
role, you will also work with software engineers to proactively
identify and fix security flaws and vulnerabilities. As an Incident
Response Consultant, you will provide industry-leading incident
response, assessment, transformation, managed detection and
response, and training services with tactical support. You will
help organizations effectively detect and respond to threats and
reduce the overall impact of business risk before, during, and
after an incident. You will resolve security incidents quickly,
effectively, and at scale with complete incident response including
investigation, containment, remediation, and crisis management. In
this role, you will work on engagements including assisting clients
in navigating technically and high-profile incidents, performing
forensic analysis, threat hunting, and malware triage. Part of
Google Cloud, Mandiant is a recognized leader in dynamic cyber
defense, threat intelligence, and incident response services.
Mandiant's cybersecurity expertise has earned the trust of security
professionals and company executives around the world. Our unique
combination of renowned front-line experience responding to some of
the breaches, nation-state grade threat intelligence, machine
intelligence, and the industry's best security validation ensures
that Mandiant knows more about today's advanced threats than
anyone. Google Public Sector brings the magic of Google to the
mission of government and education with solutions purpose-built
for enterprises. We focus on helping United States public sector
institutions accelerate their digital transformations, and we
continue to make significant investments and grow our team to meet
the complex needs of local, state and federal government and
educational institutions. The US base salary range for this
full-time position is $147,000-$211,000 bonus equity benefits. Our
salary ranges are determined by role, level, and location. Within
the range, individual pay is determined by work location and
additional factors, including job-related skills, experience, and
relevant education or training. Your recruiter can share more about
the specific salary range for your preferred location during the
hiring process. Please note that the compensation details listed in
US role postings reflect the base salary only, and do not include
bonus, equity, or benefits. Learn more about benefits at Google .
Responsibilities Conduct host forensics, live response analysis,
log analysis, network traffic analysis, and enterprise searches in
support of incident response investigations. Apply a basic
understanding of the incident response approach and primary
incident response and digital forensics tools to incident response
investigations. Examine endpoint, cloud, and network-based sources
of evidence, and investigate and contain incidents. Recognize and
codify attacker Tools, Tactics, and Procedures (TTPs) and
Indicators of Compromise (IOCs) that can be applied to current and
future investigations. Collaborate with internal and customer teams
to investigate and contain incidents. Support specific work-streams
for a variety of client-facing investigations, including the
examination of cloud, endpoint, and network-based sources of
evidence. Develop comprehensive and accurate reports and
presentations for technical and non-technical audiences.
Keywords: Google, Harrisonburg , Incident Response Consultant, Google Public Sector, IT / Software / Systems , Reston, Virginia
