Associate Security Analyst, Mandiant Threat Defense
- linkCopy link
- emailEmail a friend
In-office locations: Dublin, Ireland.
Remote location(s): Ireland.
Minimum qualifications:
- Bachelor's degree in Cybersecurity, Information Technology or equivalent practical experience.
- 2 years of experience in a SOC environment or Information Security role.
- Experience with one or more EDR tools (e.g., Trellix HX, etc) or NDR tools (e.g., Trellix NX, etc).
- Experience in log analysis to investigate and scope security incidents.
Preferred qualifications:
- Understanding of the stages of the attack life-cycle.
- Understanding of Incident Responses to contain and remediate threats.
About the job
Mandiant Threat Defense (MTD) was established to provide ongoing protection to customers. In this role, your goal is to deliver industry-leading detection and response capabilities to Mandiant’s clients. You will be responsible for in-depth search analysis of network traffic and host activity, identifying indicators of compromise. By combining your investigative expertise with our proprietary threat intelligence, you will produce high-value compromise reports that empower organizations to neutralize threats effectively.
Responsibilities
- Analyze real-time security events across endpoint, network, and cloud environments using a centralized analyst console and SIEM/Google SecOps platform.
- Perform host and network forensic analysis to support incident response efforts, understand attacker activity, and assess customer impact. Execute basic static and dynamic analysis of suspicious files to determine capabilities. Draft high-quality, technically accurate reports.
- Determine the severity, impact, and scope of security incidents and compromises. Isolate compromised hosts and stop lateral movement or ransomware propagation.
- Identify benign patterns (e.g., breach simulations, authorized admin activity) and write logic to suppress them, freeing up the team to focus on threats. Contribute to the improvement of YARA-L rules and detection logic based on the changing Threat Landscape.
- Work within a flexible schedule to support a 24/7 global operations environment.
Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.
If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.