As an Application Security Consultant with Mandiant, part of Google Cloud, you'll deliver high-value security assessments and advisory services. Your focus will be on web application security, network security, and cloud-native solutions, utilizing offensive security techniques and tools to evaluate and improve client security postures.

Responsibilities

1. Security Assessments. Conduct independent and high-quality external network and web application security assessments. Support cloud and mobile application testing.
2. Reporting & Communication. Develop comprehensive and accurate reports and presentations for both technical and executive audiences. Communicate findings and strategies to client stakeholders, including technical staff, executive leadership, and legal counsel.
3. Tool Development & Research. Expand the team’s capabilities by creating tools, researching offensive techniques, incorporating threat actor intelligence, and sharing knowledge through internal presentations.
4. Client Advising. Advise clients on best practices for cyber defense mechanisms and assist in the implementation and assessment of security controls.
5. Travel. Be prepared to travel up to 20% of the time as needed.

Minimum Qualifications

1. Education. Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related technical field, or equivalent practical experience.
2. Experience. 3 years of experience in at least three of the following security areas: network, web application/mobile, cloud, scripting, tool development.
3. Skills. 2 years of experience with techniques and tools for web application and network security testing.

Preferred Qualifications

1. Certifications. Offensive security certifications such as OSWE, BSCP, CWEE, OSCP, or relevant SANS courses.
2. Experience. Experience in four or more of the following: application security, offensive security testing, source code review, reverse engineering, exploit development, network protocols, system and network administration, security consulting.
3. Additional Skills. Experience in software or web development. Excellent communication, collaboration, and relationship management skills.

About Mandiant & Google Cloud
Mandiant, now part of Google Cloud, is a leader in dynamic cyber defense, threat intelligence, and incident response services. The Mandiant Consulting Team provides bespoke assessments, including adversarial emulation and application security testing, to help organizations defend against and respond to cyber threats.

Google is committed to fostering a diverse and inclusive workplace. We provide equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or veteran status. We also consider qualified applicants with criminal histories, in accordance with legal requirements.