... security data platforms, focusing on security analytics and threat detection at scale ... Chronicle (SecOps), and Elastic/Logstash. • Build scalable detection rules, analytics, and ...
... security data platforms, focusing on security analytics and threat detection at scale ... Chronicle (SecOps), and Elastic/Logstash. • Build scalable detection rules, analytics, and ...
... across security data platforms, focusing on AI literacy and modern threat scenarios ... Chronicle (SecOps), and Elastic/Logstash. • Build scalable detection rules, analytics, and ...
... across security data platforms, focusing on AI literacy and modern threat scenarios ... Chronicle (SecOps), and Elastic/Logstash. • Build scalable detection rules, analytics, and ...
Senior Security Engineer- GCP
Charlotte, NC · On-site
$106K - $146K/yr
In addition, the role owns day-to-day administration and ongoing maturity of the SecOps SIEM (Google Security Operations / Chronicle), including log onboarding, detection engineering, tuning, and ...
Senior Security Engineer- GCP
Charlotte, NC · On-site
$106K - $146K/yr
In addition, the role owns day-to-day administration and ongoing maturity of the SecOps SIEM (Google Security Operations / Chronicle), including log onboarding, detection engineering, tuning, and ...
Senior Security Engineer- GCP
Charlotte, NC · Hybrid
$106K - $146K/yr
In addition, the role owns day-to-day administration and ongoing maturity of the SecOps SIEM (Google Security Operations / Chronicle), including log onboarding, detection engineering, tuning, and ...
Senior Security Engineer- GCP
Charlotte, NC · Hybrid
$106K - $146K/yr
In addition, the role owns day-to-day administration and ongoing maturity of the SecOps SIEM (Google Security Operations / Chronicle), including log onboarding, detection engineering, tuning, and ...
Sr. Infrastructure Security Engineer
$180K - $200K/yr
Own cloud security across Google Cloud Platform (GCP) and Microsoft Azure, driving initiatives from ... Experience with SIEM tools like Chronicle, including detection engineering and incident support
Sr. Infrastructure Security Engineer
$180K - $200K/yr
Own cloud security across Google Cloud Platform (GCP) and Microsoft Azure, driving initiatives from ... Experience with SIEM tools like Chronicle, including detection engineering and incident support
Sr. Infrastructure Security Engineer
Charleston, WV · Remote
$180K - $200K/yr
Own cloud security across Google Cloud Platform (GCP) and Microsoft Azure, driving initiatives from ... Experience with SIEM tools like Chronicle, including detection engineering and incident support
Quick apply
Sr. Infrastructure Security Engineer
Charleston, WV · Remote
$180K - $200K/yr
Own cloud security across Google Cloud Platform (GCP) and Microsoft Azure, driving initiatives from ... Experience with SIEM tools like Chronicle, including detection engineering and incident support
Senior Security Engineer, Uppercase Research
Austin, TX · On-site
$113K - $155K/yr
Experience in security research, advanced threat hunting, and signals development across endpoint ... Originating from Alphabet's moonshot factory, X, and developed within Chronicle (now Google SecOps ...
Senior Security Engineer, Uppercase Research
Austin, TX · On-site
$113K - $155K/yr
Experience in security research, advanced threat hunting, and signals development across endpoint ... Originating from Alphabet's moonshot factory, X, and developed within Chronicle (now Google SecOps ...
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
Security Researcher
Wilmington, DE · On-site +1
Familiarity with SIEM and XDR solutions (e.g., Splunk, Sentinel, Chronicle) and their role in modern detection engineering. * Strong problem-solving and analytical skills to triage security incidents ...
Security Researcher
Wilmington, DE · On-site +1
Familiarity with SIEM and XDR solutions (e.g., Splunk, Sentinel, Chronicle) and their role in modern detection engineering. * Strong problem-solving and analytical skills to triage security incidents ...
Google Chronicle), to enhance the detection, analysis, and response to security incidents. This role is integral to safeguarding digital infrastructure, ensuring rapid detection of threats, and ...
Google Chronicle), to enhance the detection, analysis, and response to security incidents. This role is integral to safeguarding digital infrastructure, ensuring rapid detection of threats, and ...
SOC Analyst with Splunk
Fulshear, TX · On-site
Experience with Information Security, Enterprise Security Monitoring & response, Security ... Splunk, GCP, Crowd strike, Insider Risk, JIRA, Confluence, Google Chronicle, Verdin, Phantom ...
SOC Analyst with Splunk
Fulshear, TX · On-site
Experience with Information Security, Enterprise Security Monitoring & response, Security ... Splunk, GCP, Crowd strike, Insider Risk, JIRA, Confluence, Google Chronicle, Verdin, Phantom ...
Information Security Specialist - Assistant Vice President
Jacksonville, FL · On-site
$78K - $120K/yr
Promote automation and operational efficiency by leveraging Chronicle SOAR and Azure Logic Apps to improve threat detection, incident response, and the accuracy of security reporting * Serve as a ...
Information Security Specialist - Assistant Vice President
Jacksonville, FL · On-site
$78K - $120K/yr
Promote automation and operational efficiency by leveraging Chronicle SOAR and Azure Logic Apps to improve threat detection, incident response, and the accuracy of security reporting * Serve as a ...
Information Security Specialist - Assistant Vice President
Jacksonville, FL · Hybrid
$78K - $120K/yr
Promote automation and operational efficiency by leveraging Chronicle SOAR and Azure Logic Apps to improve threat detection, incident response, and the accuracy of security reporting * Serve as a ...
Information Security Specialist - Assistant Vice President
Jacksonville, FL · Hybrid
$78K - $120K/yr
Promote automation and operational efficiency by leveraging Chronicle SOAR and Azure Logic Apps to improve threat detection, incident response, and the accuracy of security reporting * Serve as a ...
... security events to determine the severity and impact of potential threats. • Leverage Google Chronicle's capabilities for threat intelligence and log analysis, enhancing visibility and providing ...
... security events to determine the severity and impact of potential threats. • Leverage Google Chronicle's capabilities for threat intelligence and log analysis, enhancing visibility and providing ...
Need Platform Compliance & Security Engineer - Jersey City, NJ -/ OPT / L2s - W2 / 1099
Jersey City, NJ · On-site
Lead security incident response activities for Google Cloud Platform-hosted workloads, conduct forensic investigation using Cloud Logging and Chronicle, and drive post-incident reviews to improve ...
Need Platform Compliance & Security Engineer - Jersey City, NJ -/ OPT / L2s - W2 / 1099
Jersey City, NJ · On-site
Lead security incident response activities for Google Cloud Platform-hosted workloads, conduct forensic investigation using Cloud Logging and Chronicle, and drive post-incident reviews to improve ...
Sr. Security Engineer
$108K - $149K/yr
Role Overview As a Senior Security Engineer, you will be tasked with the critical role of ... Experience with Chronicle, SCC, and Datadog is preferred o Hands-on experience with risk assessment ...
Sr. Security Engineer
$108K - $149K/yr
Role Overview As a Senior Security Engineer, you will be tasked with the critical role of ... Experience with Chronicle, SCC, and Datadog is preferred o Hands-on experience with risk assessment ...
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
Network Security Analyst 1
Austin, TX · On-site
Arthur Lawrence is looking for a Network Security Analyst 1 one of our clients in Austin, TX. ... Been recognized as a 2023 TOP WORKPLACE by the Houston Chronicle * IAOP Award; Ranked in the top ...
Network Security Analyst 1
Austin, TX · On-site
Arthur Lawrence is looking for a Network Security Analyst 1 one of our clients in Austin, TX. ... Been recognized as a 2023 TOP WORKPLACE by the Houston Chronicle * IAOP Award; Ranked in the top ...
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
Quick apply
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
Quick apply
... Splunk, Google Chronicle (SecOps), and Elastic/Logstash. - Build scalable detection rules ... Required Qualifications - 2-4 years in a security engineering or other relevant security operations ...
Chronicle Security information
See salary details
$13.94 - $17.44
17% of jobs
$18.34 is the 25th percentile. Wages below this are outliers.
$17.44 - $20.94
32% of jobs
The median wage is $21.21 / hr.
$20.94 - $24.43
20% of jobs
$26.86 is the 75th percentile. Wages above this are outliers.
$24.43 - $27.93
9% of jobs
$27.93 - $31.42
5% of jobs
$31.42 - $34.92
6% of jobs
$34.92 - $38.42
3% of jobs
$38.42 - $41.91
4% of jobs
$41.91 - $45.41
1% of jobs
$45.41 - $48.91
1% of jobs
$48.91 - $52.40
1% of jobs
$13
$25
$52
How much do chronicle security jobs pay per hour?
What is a Chronicle Security job?
A Chronicle Security job typically refers to a role within Google Cloud's Chronicle team, which focuses on cybersecurity and threat intelligence. Professionals in these roles work on analyzing security data, developing threat detection solutions, and improving enterprise security operations. Responsibilities may include working with SIEM technologies, investigating security incidents, and leveraging Chronicle’s cloud-based security platform to enhance cybersecurity defenses for organizations.
What are some typical daily responsibilities of a Chronicle Security professional?
As a Chronicle Security professional, your typical day will involve monitoring security events, analyzing potential threats using Chronicle's analytics tools, and collaborating with IT and incident response teams to address vulnerabilities. You'll also work on fine-tuning security alerts, conducting root-cause analysis of incidents, and providing actionable insights to improve the organization's security posture. Working in this role often requires staying up-to-date with the latest cyber threats and adapting processes as needed. This mix of proactive monitoring and collaborative problem-solving makes the work both dynamic and impactful.
What are the key skills and qualifications needed to thrive in the Chronicle Security position, and why are they important?
To excel in a Chronicle Security role, you need a strong background in cybersecurity, threat detection, and incident response, usually supported by a degree in computer science or related fields. Familiarity with Chronicle's security analytics platform, SIEM systems, and relevant certifications such as CISSP or GIAC are highly valuable. Analytical thinking, attention to detail, and effective communication skills set top candidates apart. Mastering these skills ensures you can proactively identify and respond to security threats, helping organizations maintain robust defense against cyber risks.
Full-time
Posted 18 days ago
ID.me rating
5.6
Based on 7 frontline employees who took The Breakroom Quiz
195th of 209 rated software companies
Job description
ID.me is a next-generation digital identity wallet that simplifies secure identity verification online. They are seeking a Threat Detection Engineer to develop and optimize high-fidelity detections across security data platforms, focusing on security analytics and threat detection at scale.
Responsibilities:
• Design and implement detection logic across SIEM/SOAR platforms, including Splunk, Google Chronicle (SecOps), and Elastic/Logstash.
• Build scalable detection rules, analytics, and anomaly models to detect adversary TTPs aligned with MITRE ATT&CK.
• Develop and maintain detection-as-code using Python and YAML-based rule formats (e.g., Sigma, YARA-L, Kusto, or Lucene).
• Design and evaluate LLM-assisted detection and triage workflows, including prompt engineering for alert enrichment, summarization, and classification.
• Build and maintain AI-augmented detection pipelines: anomaly scoring, embedding-based similarity search, natural language parsing for phishing and social engineering detection, and LLM-based log analysis.
• Apply AI security literacy to identify and detect risks in AI-integrated environments, including prompt injection, model abuse, data exfiltration via LLMs, and shadow AI usage.
• Perform quality assurance and validation of alerts — including AI-generated signals — to minimize false positives and increase signal fidelity.
• Leverage Snowflake and SQL to normalize and query large datasets across multiple telemetry sources, including AI system logs and API call records.
• Contribute to infrastructure-as-code workflows for detection deployment (e.g., Terraform, GitOps pipelines).
• Collaborate with Threat Intelligence and IR teams to translate threat actor TTPs — including those targeting AI systems — into actionable detections.
• Participate in detection tuning, red/blue team exercises, and post-incident reviews, including adversarial testing of AI-assisted detection logic.
• Maintain availability for 24x7 on-call rotation and ensure timely response to security incidents during standard EST business hours.
Qualifications:
Required:
• 2-4 years in a security engineering or other relevant security operations role.
• Proficiency with Splunk, Elastic Stack, Google SecOps (Chronicle), and/or Logstash.
• Strong programming or scripting experience in Python and SQL.
• Working experience authoring detection logic using YARA-L, Sigma, or equivalent formats.
• Demonstrated AI literacy: hands-on experience using LLM APIs (e.g., OpenAI, Anthropic, Google Gemini) or AI/ML frameworks for security use cases, including prompt engineering, retrieval-augmented generation (RAG), or agentic workflows.
• Understanding of AI/ML concepts relevant to detection: anomaly detection, clustering, embedding models, LLM-based enrichment, and the limitations and failure modes of these approaches.
• Ability to assess and detect AI-specific threats: prompt injection, model inversion, training data poisoning, and LLM-facilitated social engineering.
• Experience working with cloud-scale security data and log management tools.
• Familiarity with MITRE ATT&CK, threat modeling, and behavioral-based detections.
• Knowledge of Infrastructure-as-Code (IaC) and version control systems (e.g., GitHub, Terraform, GitLab CI/CD).
Preferred:
• Industry security certifications such as GCIA, GCIH, GCFA, Security+, or AI/ML security credentials.
• Experience with Google Cloud Platform (GCP) and Google Kubernetes Engine (GKE), including GKE security posture management, audit logging, and cloud-native workload monitoring.
• Experience building or operating SOAR integrations with LLM-assisted triage or response recommendations.
• Hands-on experience with agentic AI frameworks (e.g., LangChain, LlamaIndex, or custom tool-use pipelines) applied to security automation.
• Familiarity with Snowflake's Security Data Lake or cloud-native log pipelines, including telemetry from AI platforms (e.g., OpenAI API logs, Azure AI services).
• Exposure to red team/blue team collaboration, threat hunting, or adversary emulation frameworks, with emphasis on AI-enabled attack scenarios.
• Experience red-teaming or evaluating LLM-based systems for security weaknesses.
• Contributions to open-source detection or AI security tooling projects.
Company:
ID.me is a digital identity wallet that allows users to securely prove their identity online. Founded in 2010, the company is headquartered in Mclean, USA, with a team of 1001-5000 employees. The company is currently Late Stage.
About ID.me
Sourced by ZipRecruiter
Industry
Software development
Company size
501 - 1,000 Employees
Headquarters location
McLean, VA, US
Year founded
2010