Senior Cloud Security Engineer - Seattle - Aurora Innovation

    Aurora Innovation
    Aurora Innovation Seattle

    1 week ago

    Description
    Who we are
    Aurora's mission is to deliver the benefits of self-driving technology safely, quickly, and broadly.
    The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone.
    At Aurora, you will tackle massively complex problems alongside other passionate, intelligent individuals, growing as an expert while expanding your knowledge. For the latest news from Aurora, visit or follow us on LinkedIn.
    Aurora's Cloud Security team's mission is to design and build security capabilities for Aurora infrastructure and services. Aurora makes extensive use of public cloud infrastructure (AWS), Kubernetes and infrastructure-as-code technologies.
    This role requires a deep, hands-on understanding of cloud security principles and architecture, particularly within AWS and Kubernetes (EKS). As a Senior Engineer, you will own the design and implementation of key security infrastructure, serving as a key technical contributor and mentor within the security team and across engineering. You can read more about our approach to security on our blog: Aurora's approach to cybersecurity for autonomous trucking.
    This role is expected to take ownership of and drive projects in one or more of these critical areas, depending on team needs and your specific expertise:
    • Own the design and implementation of core security infrastructure services, including certificate management (PKI), secrets management, and centralized authentication/authorization services leveraging standards like OIDC and SAML.
    • Deep AWS Security Specialization: Architect and manage security boundaries and access controls for the entire AWS environment, including but not limited to:
      • IAM Governance: Define and enforce least-privilege IAM roles and policies, establish strong IAM Access Boundaries using Service Control Policies (SCPs), and govern inter-service communication.
      • Network Segmentation: Design and implement robust network security controls within VPCs, including Security Groups, Network ACLs, and private connectivity (VPC Endpoints, Transit Gateway).
    • Design and implement security best practices and tooling within AWS and EKS, including controls such as admission controllers, image scanning/signing, pod security standards, and runtime security enforcement.
    • Develop and manage systems for continuous security control monitoring, reporting, and automated remediation (e.g., using AWS Config, GuardDuty, or custom tools).
    • Develop threat models independently, or jointly with system owners. Translate identified threats into tangible security requirements, ensuring controls are strategically deployed to strengthen the security posture of core platforms and services.
    • Serve as a key security consultant to product and platform engineering teams, conducting in-depth security design reviews for new systems and features, and proposing actionable security control implementations.
    In this role, you will:
    • Design, implement, and maintain the next generation of security infrastructure, controls, and primitives natively within AWS and across our Kubernetes (EKS) platform.
    • Define Security as Code: Drive the adoption of Infrastructure as Code (IaC) principles (e.g., Terraform) to codify, deploy, and continuously monitor security controls and policies in an auditable and scalable manner.
    • Strategic Threat Modeling: Lead threat modeling exercises for critical systems and architectures, translating risks into prioritized security requirements and verifiable controls.
    • Architectural Guidance: Provide security guidance and consulting for product and platform engineering teams, conducting in-depth security design reviews and providing pragmatic, hands-on recommendations for securing complex microservice architectures.
    • Automate Remediation: Identify systemic security weaknesses and create robust, scalable automation (e.g., Python/Go-based tools, Lambda functions, EKS controllers) to eliminate classes of vulnerabilities at the source.
    Required Qualifications:
    • 5+ years of progressive experience in software, platform, or security engineering, with a minimum of 3+ years focusing exclusively on public cloud security (AWS required).
    • Experience in identifying and managing security risk, and the ability to navigate the organizational friction to manage these risks.
    • Expert-level, hands-on experience securing and operating complex environments in AWS, including expertise with IAM, VPC Networking, Security Hub, Config, GuardDuty, and KMS.
    • Proven ability to design and implement security controls for Kubernetes (EKS), including strong knowledge of authorization models, admission controllers, and security best practices.
    • Expertise in one or more Identity and Access Management (IAM) standards and technologies: PKI, OAuth2/OIDC, SAML, and commercial solutions like Okta.
    • Strong proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation, tools, and remediation services.
    • Experience writing, reviewing, and scaling infrastructure with Terraform.
    Desirable Qualifications:
    • Deep fundamental understanding of enterprise-level network security, operating system security (Linux), and application security principles.
    • Experience implementing DevSecOps practices, including integration of security testing (SAST/DAST/SCA) into CI/CD pipelines (e.g., GitLab, Jenkins).
    • Familiarity with compliance frameworks (e.g., SOX, SOC 2, ISO
    The base salary range for this position is $162,000 - $235,000 per year. Aurora's pay ranges are determined by role, level, and location. Within the range, the successful candidate's starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.
    Working at AuroraAt Aurora, we bring together extraordinarily talented and experienced people united by the strength of our values. We operate with integrity, set outrageous goals, and build a culture where we win together - all without any jerks.
    We believe in-person work increases collaboration, empathy and our ability to lead effectively. As a result, we operate in a hybrid work environment where Aurorans are in office at least 3 days per week.
    Our Careers page provides insight into what it is like to work at Aurora, and you can find all the latest updates in our Newsroom.
    Our commitment to safety
    At the core of everything we do is our commitment to safety. Building best-in-class self-driving technology will take time, and we believe that each employee at Aurora has a role in contributing to safety, every step of the way. Aurora expects commitment to our safety policies from every employee, and seeks candidates who take an active responsibility, can contribute to building an atmosphere of trust, and invest in the organization's long-term success by prioritizing working safely, no matter what.
    Our commitment to inclusion
    Aurora considers candidates without regard to their race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, pregnancy status, parent or caregiver status, ancestry, political affiliation, veteran and/or military status, physical or mental disability, or any other status protected by federal or state law. Aurora considers qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us

  • Security Engineer

    2 weeks ago

    Only for registered members Seattle Full time $115,000 - $140,000 (USD)

    We are seeking candidates inspired by the opportunity to securely apply data in the development of real-world health solutions. · ...

  • Security Engineer

    6 days ago

    Only for registered members Seattle

    Insight Global is looking for a Security Engineer within Data & AI Security. · ...

  • Security Engineer

    1 week ago

    Only for registered members Seattle, WA

    Truveta is building a talented team to tackle health and technical challenges. We seek problem solvers who share our company values. · ...

  • Security Engineer

    1 month ago

    Only for registered members Seattle

    We are seeking a Hardware Security Engineer to join our dynamic team focused on device security and hardware validation.This role is essential in ensuring our products meet the highest security standards through comprehensive requirement verification, security assessment, and imp ...

  • Security Engineer

    2 days ago

    Only for registered members Seattle

    We are a group of ambitious individuals who are passionate about creating a revolutionary AI company. · Engineer, implement and monitor security measures for the protection of computer systems, networks and information · Identify and define system security requirements · ...

  • Security Engineer

    1 month ago

    Only for registered members Seattle;

    We're looking for a Security Engineer to join our team at Superhuman. · This role will play a crucial part in maintaining user trust by working alongside our collaborative partners to identify and implement high-impact projects, · to improve security · and reduce risk in our prod ...

  • Security Engineer

    2 weeks ago

    Only for registered members Seattle $115,000 - $140,000 (USD)

    We are seeking candidates inspired by the opportunity to securely apply data in the development of real-world health solutions. · ...

  • Security Engineer

    1 day ago

    Only for registered members Seattle, WA

    Truveta is the world's first health provider led data platform with a vision of Saving Lives with Data. Our mission is to enable researchers to find cures faster, empower every clinician to be an expert, and help families make the most informed decisions about their care. · Desig ...

  • Security Engineer

    2 days ago

    Only for registered members Seattle, WA

    Develops and manages security for more than one IT functional area across the enterprise. · Assists in the development and implementation of security policies and procedures. · ...

  • Security Engineer

    1 month ago

    Only for registered members Seattle Full time $160,000 - $200,000 (USD)

    We're looking for builders reimaginers and global thinkers who want to work at the intersection of technology trust transformation. If that's you we invite you to join over 2800 passionate Remitlians worldwide who are united by our vision to transform lives with trusted financial ...

  • Security Engineer

    3 days ago

    Only for registered members Seattle Full time $115,000 - $130,000 (USD)

    Join Lumen Bioscience as a Security Engineer & Analyst to be the guardian of our hybrid cloud infrastructure and endpoint ecosystem. This position requires balancing stringent biotech regulatory and compliance requirements with practical, scalable security solutions that enable s ...

  • Security Engineer

    5 days ago

    Only for registered members Seattle, Washington

    You'll help in shaping and evolving our detection and response capabilities as a Security Engineer on the DSSE team. You'll own and enhance our use of Stellar Cyber XDR, work closely with our SOC team to improve alert quality, automate investigations, and uncover new detection op ...

  • Security Engineer

    2 weeks ago

    Only for registered members Seattle $90,000 - $105,000 (USD)

    As a Security Engineer on the DSSE team at WatchGuard MDR you'll help shape and evolve detection and response capabilities. You'll work with Stellar Cyber XDR to improve alert quality automate investigations uncover new detection opportunities. · ...

  • Security Engineer

    1 month ago

    Only for registered members Seattle Full time $115,000 - $130,000 (USD)

    We are seeking a Security Engineer & Analyst to be the guardian of our hybrid cloud infrastructure and endpoint ecosystem. · ...

  • Security Engineer

    2 weeks ago

    Only for registered members Seattle Full time $90,000 - $105,000 (USD)

    You'll help in shaping and evolving our detection and response capabilities. You'll own and enhance our use of the Stellar Cyber XDR, and work closely with our SOC team to improve alert quality, automate investigations, and uncover new detection opportunities. · ...

  • Security Engineer

    5 days ago

    Only for registered members Seattle

    We are seeking innovative thinkers who aim to make a significant impact in a collaborative environment. · Collaborate with the IT team to review and enhance corporate infrastructure while providing consultancy support for migrations and integrations · Assist in the creation and i ...

  • Security Engineer

    2 weeks ago

    Only for registered members Seattle, WA Remote job

    You're a curious detail-oriented problem solver who thrives on tackling complex challenges. · The WatchGuard MDR Data Science and Security Engineering (DSSE) team is responsible for building and maintaining detections and leveraging cutting-edge AI to improve SOC efficiency and e ...

  • Security Engineer, Offensive Security

    1 week ago

    Only for registered members Seattle Full time $300,000 - $320,000 (USD)

    Job summary: Security Engineer · We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. ...

  • Security Engineer

    1 day ago

    Only for registered members Seattle, WA

    This position is on-site in Seattle · The guardian of our hybrid cloud infrastructure and endpoint ecosystem · Duties & Responsibilities: · Cloud & Identity Security (~40%) · Endpoint Security & Management (~30%) · Scurity Operations & Incident Response (~20%) · The role requires ...

  • Security Engineer

    2 weeks ago

    Only for registered members Seattle Full time $123,800 - $176,625 (USD)

    Join our vulnerability management team to drive digital surface coverage at Docusign. · ...

  • Security Engineer, Product Security

    2 weeks ago

    Only for registered members Seattle $140,000 - $165,000 (USD)

    As a Security Engineer, Product Security, you will help build and ship secure products by working closely with engineering teams to identify risk early. · Support secure-by-design practices and ensure security is integrated into software development lifecycle. · ...

Jobs
>
Senior cloud security engineer
>
Jobs for Senior cloud security engineer in Seattle