Senior Software Engineer, Chrome Product Security, Core

Minimum Qualifications:

• Bachelor’s degree or equivalent practical experience.
• 5 years of experience with software development in one or more programming languages.
• 5 years of experience with software development in relation to data privacy, security systems, or computer and network security.
• 3 years of experience building software for data privacy or security (e.g., identity and access management).
• 3 years of experience testing, maintaining, or launching software products.
• 1 year of experience with software design and architecture.

Preferred Qualifications:

• Master's degree or PhD in Computer Science or a related technical field.
• 5 years of experience with data structures/algorithms.
• 1 year of experience in a technical leadership role.
• Experience in security assessments, vulnerability management, security research, or vulnerability investigation, security development life-cycle.
• Experience with open source software and infrastructure development.
• Experience developing accessible technologies.

About The Job

Google's software engineers develop the next-generation technologies that change how billions of users connect, explore, and interact with information and one another. Our products need to handle information at massive scale, and extend well beyond web search. We're looking for engineers who bring fresh ideas from all areas, including information retrieval, distributed computing, large-scale system design, networking and data storage, security, artificial intelligence, natural language processing, UI design and mobile; the list goes on and is growing every day. As a software engineer, you will work on a specific project critical to Google’s needs with opportunities to switch teams and projects as you and our fast-paced business grow and evolve. We need our engineers to be versatile, display leadership qualities and be enthusiastic to take on new problems across the full-stack as we continue to push technology forward.

In this role, you will be the owner for all tooling and automation that keeps our security operations healthy and efficient. You will maintain existing tooling and devise new automation that will directly impact the Chrome vulnerability life-cycle and ensure we are able to release security fixes to the billions of people using Chrome as quickly as possible. You will also work on improvements to make relevant vulnerability data available to internal and external Chrome customers.

You will gain knowledge of our security bug triage, vulnerability management, security fix release, and VRP processes. You will also work on tooling to support the generation of security metrics and dashboards as part of Product Security initiatives, and as part of briefings and planning efforts for Chrome Security and Chrome leadership.

Google is an engineering company at heart. We hire people with a broad set of technical skills who are ready to take on some of technology's greatest challenges and make an impact on users around the world. At Google, engineers not only revolutionize search, they routinely work on scalability and storage solutions, large-scale applications and entirely new platforms for developers around the world. From Google Ads to Chrome, Android to YouTube, social to local, Google engineers are changing the world one technological achievement after another.

The US base salary range for this full-time position is $166,000-$244,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Lead security tooling and automation projects and efforts for Chrome Security.
• Develop and maintain existing security tooling and automation and work with Chrome Product Security to identify any areas of friction in vulnerability management, bug triage, or other operations and devise new tooling or automation to address them.
• Work directly with the Chrome Fuzzing team on tooling that applies to our fuzzing outcomes and other automated bug discovery mechanisms.
• Maintain the security tooling backlog and prioritize work on tooling efforts with maximum impact to Chrome Security team and security operational workflows.