Senior Security Engineer, Abuse and AI VRP

There's no such thing as a 'safe system' - only safer systems. Our Security team works to create and maintain the safest operating environment for Google's users and developers. As a Security Engineer, you help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. Security Engineers work directly with network equipment and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities. You use your industry experience to own and drive the resolution of complex security incidents, policy questions and technical security issues. The Abuse and AI Vulnerability Rewards Program (VRP) is a bug bounty program which covers abusive use of Google's systems, including Generative AI systems such as Gemini. The VRP team is responsible for assessing reports from external security researchers, interacting directly with researchers and product teams, deciding on rewards for reporters, and managing the resolution and coordinated disclosure of vulnerabilities. As a Senior Security Engineer, you will be responsible for reviewing a queue of externally-reported security and abuse issues, determining whether reports are valid, replicating reports where feasible, and opening bugs with product teams for resolution. Additionally, the Senior Security Engineer will act as an internal point of technical escalation for team members, including unblocking issue reproduction, providing feedback on severity, and similar.