Incident Response Consultant, Cyber Security

About the job

As an Incident Response Consultant, you will provide industry-leading incident response, assessment, transformation, managed detection and response, and training services with tactical support. You will help organizations effectively detect and respond to threats and reduce the overall impact of business risk before, during, and after an incident. You will resolve security incidents quickly, effectively and at scale with complete incident response including investigation, containment, remediation, and crisis management.

In this role, you will work on engagements including assisting clients in navigating technically complex and high‑profile incidents, performing forensic analysis, threat hunting, and malware triage.

Google will be prioritizing applicants who have a current right to work in Singapore and do not require Google's sponsorship of a visa.

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, a related technical field, or equivalent practical experience.
• Experience in incident response investigations, analysis, or containment actions, and three or more of the following: network or log forensic analysis, malware triage analysis, disk, or memory forensics.
• Experience in cybersecurity in one of the following areas: network security, wireless security, web application assessments, social engineering, scripting, cloud security, reverse engineering, or incident response.

• Experience with malware triage analysis and disk or memory forensics in one or more operating systems.
• Experience with enterprise security architecture and security controls.
• Experience with cloud incidents or forensic responses.
• Ability to travel up to 20% of the time as needed.
• Excellent time and project management skills.

• Collaborate with internal and customer teams to investigate and contain incidents.
• Support specific work‑streams for a variety of client‑facing investigations including the examination of cloud, endpoint, and network‑based sources of evidence.
• Recognize and codify attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs) that can be applied to current and future investigations.
• Develop comprehensive and accurate reports and presentations for technical and non‑technical audiences.
• Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations.

Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Google's EEO Policy and EEO is the Law.

If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form.