Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as a Security Consultant, driving improvements in Cyber Defense Centers and collaborating with cross-functional teams.
- Company: Mandiant, part of Google, is a leader in cybersecurity, dedicated to protecting customer data globally.
- Benefits: Enjoy flexible work options, competitive salary, and a culture that values diversity and inclusion.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies in a dynamic environment.
- Qualifications: Bachelor's degree in a relevant field and 6 years of experience in Detection Engineering or related roles.
- Other info: We're committed to equal opportunity and fostering a diverse workforce.
The predicted salary is between 48000 - 72000 £ per year.
Mid Experience driving progress, solving problems, and mentoring more junior team members; deeper expertise and applied knowledge within relevant area.
Minimum Qualifications:
- Bachelor's degree in Computer Science, Information Systems, Cyber Security, related technical field, or equivalent practical experience.
- 6 years of experience in a Detection Engineering or related role, working with EDR and SIEM technologies.
- Experience using multiple operating systems, directory service software, and document, spreadsheet, and presentation software.
- Experience with detection tuning and creation leveraging various security tools including SIEM, EDR, or NDR tools.
- Experience with Security Orchestration and Automated Response (SOAR) platforms.
Preferred qualifications:
- Experience with Search Processing Language (SPL), Kusto Query Language (KQL), YARA-L or similar SIEM query languages.
- Experience with content engineering inside SIEM platforms (e.g., rule creation, advanced correlation searching, etc.).
- Knowledge of scripting languages (e.g., PowerShell and Python).
- Understanding of logging for common platforms and devices, including Linux and network equipment.
- Understanding of SIEM log flow, aggregation, and forwarding.
- Ability to engage and collaborate with client stakeholders and other groups within the customer environment to drive resolution for security issues.
About the job:
In this role, you will be responsible for enabling the technology and tools required to accomplish daily tasks within a Cyber Defense Center (CDC). You will collaborate with multiple cross-functional teams such as Security Architects, Security Analysts, Client Information Technology (IT) resources, and other business resource owners, to define requirements and deliver recommendations focused on technologies required to support the client's CDC. In addition, you will be responsible for maintaining the operational readiness of client Security Information and Event Management (SIEM), creating detection content, identifying areas for improvement, and setting appropriate configurations of the SIEM or related response technologies required for a client's Security Operations Center (SOC) to maintain effective incident detection and response capabilities. You will be developing and supporting automation playbooks within a client's Security Orchestration and Automated Response (SOAR) platform. You will work as a member of a technical team in a rapidly changing environment, administer a variety of information security technologies, learn new emerging technologies, and be passionate about protecting customer data and corporate assets from the threats facing multiple industries.
Responsibilities:
- Identify issues in customer cyber defense centers and formulate strategies for improvement, plan implementation of improvements, and execute/oversee plans to completion.
- Create and modify SIEM use cases and detection logic, leveraging cyber threat intelligence, written in technology-specific query language or sigma open signature format.
- Provide expertise for SIEM and other SOC technologies that assist in incident response.
- Measure and improve alert fidelity through metrics creation, tracking, responding to tuning requests, implementing incident-specific detection logic, etc.
- Support development of automations and orchestration playbooks in client SOAR platforms.
Security Consultant, Mandiant employer: Google
Contact Detail:
Google Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Consultant, Mandiant
✨Tip Number 1
Familiarise yourself with the specific technologies mentioned in the job description, such as EDR, SIEM, and SOAR platforms. Having hands-on experience or relevant projects to discuss can really set you apart during interviews.
✨Tip Number 2
Network with professionals in the cybersecurity field, especially those who work with Mandiant or similar companies. Attend industry events or webinars to make connections and gain insights that could help you during the application process.
✨Tip Number 3
Prepare to discuss your experience with detection tuning and content engineering in detail. Be ready to share specific examples of how you've improved alert fidelity or created effective detection logic in previous roles.
✨Tip Number 4
Showcase your ability to collaborate with cross-functional teams. Think of examples where you've successfully worked with different stakeholders to resolve security issues, as this is a key aspect of the role.
We think you need these skills to ace Security Consultant, Mandiant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Detection Engineering and your familiarity with EDR and SIEM technologies. Use specific examples to demonstrate your expertise in these areas.
Craft a Strong Cover Letter: In your cover letter, express your passion for cybersecurity and detail how your skills align with the responsibilities of the Security Consultant role. Mention your experience with SOAR platforms and any relevant scripting languages.
Highlight Relevant Qualifications: Clearly outline your educational background and any certifications related to Cyber Security. Emphasise your 6 years of experience and any specific projects that showcase your ability to improve cyber defence strategies.
Showcase Collaboration Skills: Since the role involves working with cross-functional teams, provide examples of past experiences where you successfully collaborated with others to solve security issues or implement improvements in a Cyber Defence Centre.
How to prepare for a job interview at Google
✨Showcase Your Technical Expertise
Make sure to highlight your experience with EDR and SIEM technologies during the interview. Be prepared to discuss specific projects where you have successfully implemented detection logic or improved alert fidelity, as this will demonstrate your hands-on knowledge.
✨Demonstrate Problem-Solving Skills
Prepare examples of how you've identified issues in cyber defence centres and formulated strategies for improvement. Discuss your approach to planning and executing these improvements, as this will show your ability to drive progress in a technical environment.
✨Familiarise Yourself with Relevant Tools
Brush up on your knowledge of Security Orchestration and Automated Response (SOAR) platforms, as well as scripting languages like PowerShell and Python. Being able to discuss how you've used these tools in past roles will set you apart from other candidates.
✨Engage with Client Stakeholders
Since collaboration is key in this role, think of examples where you've successfully engaged with client stakeholders or cross-functional teams. Highlight your communication skills and ability to work effectively with others to resolve security issues.
