Senior Security Engineer - External API Security - Google

Key Responsibilities

• Conduct comprehensive security assessments and design reviews for external API services, identifying and mitigating risks early in the development lifecycle.
• Lead threat modeling workshops and develop threat models that inform architecture decisions and secure coding guidelines.
• Collaborate with product, engineering, and operations teams to embed security controls into CI/CD pipelines and deployment processes.
• Perform vulnerability analysis, penetration testing, and code reviews to ensure compliance with industry standards and internal security policies.
• Mentor and guide cross‑functional teams on secure design principles, secure coding practices, and emerging security technologies.

Requirements

• Bachelor’s degree in Computer Science, Engineering, or related field (or equivalent practical experience).
• 5+ years of experience in security engineering, network security, and security protocols.
• Proven track record in threat modeling, security assessments, and secure coding practices.
• Strong coding skills in at least one general‑purpose language (e.g., Java, Python, Go).
• Experience leading technical teams or managing security risk analysis in an enterprise environment.