1

Chronicle Security Jobs (NOW HIRING)

Senior Security Engineer- GCP

Charlotte, NC · On-site

$106K - $146K/yr

In addition, the role owns day-to-day administration and ongoing maturity of the SecOps SIEM (Google Security Operations / Chronicle), including log onboarding, detection engineering, tuning, and ...

Own cloud security across Google Cloud Platform (GCP) and Microsoft Azure, driving initiatives from ... Experience with SIEM tools like Chronicle, including detection engineering and incident support

Senior Security Engineer, Uppercase Research

Austin, TX · On-site

$113K - $155K/yr

Experience in security research, advanced threat hunting, and signals development across endpoint ... Originating from Alphabet's moonshot factory, X, and developed within Chronicle (now Google SecOps ...

Familiarity with SIEM and XDR solutions (e.g., Splunk, Sentinel, Chronicle) and their role in modern detection engineering. * Strong problem-solving and analytical skills to triage security incidents ...

Sr. Security Engineer

Indianapolis, IN

$108K - $149K/yr

Role Overview As a Senior Security Engineer, you will be tasked with the critical role of ... Experience with Chronicle, SCC, and Datadog is preferred o Hands-on experience with risk assessment ...

Arthur Lawrence is looking for a Network Security Analyst 1 one of our clients in Austin, TX. ... Been recognized as a 2023 TOP WORKPLACE by the Houston Chronicle * IAOP Award; Ranked in the top ...

next page

Showing results 1-20

Chronicle Security information

See salary details

$13

$25

$52

How much do chronicle security jobs pay per hour?

As of Jul 14, 2026, the average hourly pay for chronicle security in the United States is $25.98, according to ZipRecruiter salary data. Most workers in this role earn between $18.27 and $29.33 per hour, depending on experience, location, and employer.

What is a Chronicle Security job?

A Chronicle Security job typically refers to a role within Google Cloud's Chronicle team, which focuses on cybersecurity and threat intelligence. Professionals in these roles work on analyzing security data, developing threat detection solutions, and improving enterprise security operations. Responsibilities may include working with SIEM technologies, investigating security incidents, and leveraging Chronicle’s cloud-based security platform to enhance cybersecurity defenses for organizations.

What are some typical daily responsibilities of a Chronicle Security professional?

As a Chronicle Security professional, your typical day will involve monitoring security events, analyzing potential threats using Chronicle's analytics tools, and collaborating with IT and incident response teams to address vulnerabilities. You'll also work on fine-tuning security alerts, conducting root-cause analysis of incidents, and providing actionable insights to improve the organization's security posture. Working in this role often requires staying up-to-date with the latest cyber threats and adapting processes as needed. This mix of proactive monitoring and collaborative problem-solving makes the work both dynamic and impactful.

What are the key skills and qualifications needed to thrive in the Chronicle Security position, and why are they important?

To excel in a Chronicle Security role, you need a strong background in cybersecurity, threat detection, and incident response, usually supported by a degree in computer science or related fields. Familiarity with Chronicle's security analytics platform, SIEM systems, and relevant certifications such as CISSP or GIAC are highly valuable. Analytical thinking, attention to detail, and effective communication skills set top candidates apart. Mastering these skills ensures you can proactively identify and respond to security threats, helping organizations maintain robust defense against cyber risks.

More about Chronicle Security jobs
Threat Detection Engineer - Security Operations

Threat Detection Engineer - Security Operations

ID.me

Mountain View, CA • On-site

Full-time

Posted 18 days ago


ID.me rating

5.6

Company rating: 5.6 out of 10

Based on 7 frontline employees who took The Breakroom Quiz

195th of 209 rated software companies


Job description

Job Summary:
ID.me is a next-generation digital identity wallet that simplifies secure identity verification online. They are seeking a Threat Detection Engineer to develop and optimize high-fidelity detections across security data platforms, focusing on security analytics and threat detection at scale.
Responsibilities:
• Design and implement detection logic across SIEM/SOAR platforms, including Splunk, Google Chronicle (SecOps), and Elastic/Logstash.
• Build scalable detection rules, analytics, and anomaly models to detect adversary TTPs aligned with MITRE ATT&CK.
• Develop and maintain detection-as-code using Python and YAML-based rule formats (e.g., Sigma, YARA-L, Kusto, or Lucene).
• Design and evaluate LLM-assisted detection and triage workflows, including prompt engineering for alert enrichment, summarization, and classification.
• Build and maintain AI-augmented detection pipelines: anomaly scoring, embedding-based similarity search, natural language parsing for phishing and social engineering detection, and LLM-based log analysis.
• Apply AI security literacy to identify and detect risks in AI-integrated environments, including prompt injection, model abuse, data exfiltration via LLMs, and shadow AI usage.
• Perform quality assurance and validation of alerts — including AI-generated signals — to minimize false positives and increase signal fidelity.
• Leverage Snowflake and SQL to normalize and query large datasets across multiple telemetry sources, including AI system logs and API call records.
• Contribute to infrastructure-as-code workflows for detection deployment (e.g., Terraform, GitOps pipelines).
• Collaborate with Threat Intelligence and IR teams to translate threat actor TTPs — including those targeting AI systems — into actionable detections.
• Participate in detection tuning, red/blue team exercises, and post-incident reviews, including adversarial testing of AI-assisted detection logic.
• Maintain availability for 24x7 on-call rotation and ensure timely response to security incidents during standard EST business hours.
Qualifications:
Required:
• 2-4 years in a security engineering or other relevant security operations role.
• Proficiency with Splunk, Elastic Stack, Google SecOps (Chronicle), and/or Logstash.
• Strong programming or scripting experience in Python and SQL.
• Working experience authoring detection logic using YARA-L, Sigma, or equivalent formats.
• Demonstrated AI literacy: hands-on experience using LLM APIs (e.g., OpenAI, Anthropic, Google Gemini) or AI/ML frameworks for security use cases, including prompt engineering, retrieval-augmented generation (RAG), or agentic workflows.
• Understanding of AI/ML concepts relevant to detection: anomaly detection, clustering, embedding models, LLM-based enrichment, and the limitations and failure modes of these approaches.
• Ability to assess and detect AI-specific threats: prompt injection, model inversion, training data poisoning, and LLM-facilitated social engineering.
• Experience working with cloud-scale security data and log management tools.
• Familiarity with MITRE ATT&CK, threat modeling, and behavioral-based detections.
• Knowledge of Infrastructure-as-Code (IaC) and version control systems (e.g., GitHub, Terraform, GitLab CI/CD).
Preferred:
• Industry security certifications such as GCIA, GCIH, GCFA, Security+, or AI/ML security credentials.
• Experience with Google Cloud Platform (GCP) and Google Kubernetes Engine (GKE), including GKE security posture management, audit logging, and cloud-native workload monitoring.
• Experience building or operating SOAR integrations with LLM-assisted triage or response recommendations.
• Hands-on experience with agentic AI frameworks (e.g., LangChain, LlamaIndex, or custom tool-use pipelines) applied to security automation.
• Familiarity with Snowflake's Security Data Lake or cloud-native log pipelines, including telemetry from AI platforms (e.g., OpenAI API logs, Azure AI services).
• Exposure to red team/blue team collaboration, threat hunting, or adversary emulation frameworks, with emphasis on AI-enabled attack scenarios.
• Experience red-teaming or evaluating LLM-based systems for security weaknesses.
• Contributions to open-source detection or AI security tooling projects.
Company:
ID.me is a digital identity wallet that allows users to securely prove their identity online. Founded in 2010, the company is headquartered in Mclean, USA, with a team of 1001-5000 employees. The company is currently Late Stage.

What ID.me employees say

Pay

Hours and flexibility

Workplace

Get the full story on Breakroom