Job Description
The role involves designing, implementing, and managing security infrastructure and controls within AWS and Kubernetes environments, serving as a technical security leader and advisor to engineering teams to ensure the safety and integrity of Aurora's autonomous driving platform.
Key Responsibilities
- Design and implement security infrastructure services such as certificate management, secrets management, and authentication/authorization systems.
- Manage security boundaries, access controls, and enforce least-privilege IAM roles within AWS and Kubernetes environments.
- Design and implement network security controls including VPC segmentation, Security Groups, Network ACLs, and private connectivity solutions.
- Develop and maintain security best practices, tooling, and controls within AWS and EKS, including admission controllers and runtime security enforcement.
- Create and manage systems for continuous security monitoring, reporting, and automated remediation.
- Conduct threat modeling and translate risks into security requirements and controls.
- Perform security design reviews for new systems and features, providing actionable security recommendations.
- Lead the development of security infrastructure, controls, and primitives within AWS and Kubernetes EKS platforms.
- Define and implement Security as Code using Infrastructure as Code tools like Terraform.
- Lead advanced threat modeling exercises and translate risks into security requirements.
- Automate security remediation processes to eliminate vulnerabilities at the source.
Requirements
- A minimum of 7 years of progressive experience in software, platform, or security engineering, with at least 3 years focusing exclusively on public cloud security in AWS.
- Experience in identifying and managing security risk, and the ability to navigate organizational friction to manage these risks.
- Expert-level, hands-on experience securing and operating complex environments in AWS, including expertise with IAM, VPC Networking, Security Hub, Config, GuardDuty, and KMS.
- Proven ability to design and implement security controls for Kubernetes EKS, including strong knowledge of authorization models, admission controllers, and security best practices.
- Expertise in one or more Identity and Access Management (IAM) standards and technologies such as PKI, OAuth2, OIDC, SAML, and commercial solutions like Okta.
- Strong proficiency in at least one modern programming or scripting language such as Python or Go for building security automation, tools, and remediation services.
- Experience writing, reviewing, and scaling infrastructure with Terraform.
- Deep understanding of enterprise-level network security, operating system security (Linux), and application security principles.
- Experience implementing DevSecOps practices, including integration of security testing (SAST, DAST, SCA) into CI/CD pipelines (e.g., GitLab, Jenkins).
- Familiarity with compliance frameworks such as SOX, SOC 2, and ISO 27001.
Benefits & Perks
Compensation/salary range: $220,000 - $300,000 per year
Annual bonus
Equity compensation
Benefits (unspecified)
Ready to Apply?
Join Aurora and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Aurora
More jobs at Aurora
Staff Data Analyst, People Analytics
Aurora
NEW
San Francisco
Full Time
7h
$143k-229k
Staff Data Analyst, People Analytics
Aurora
NEW
Mountain View
Full Time
7h
$143k-229k
Staff Cloud Security Engineer
Aurora
NEW
Pittsburgh
Full Time
2d
$198k-280k
More jobs in Seattle, Washington
Lead Technical Product Marketing Manager
Amperity
NEW
Seattle
Full Time
7h
$170k-230k
Senior Sales Director
Amperity
Seattle
Full Time
Dec 9
$180k-180k
Senior Product Manager - Real Time Personalization
Amperity
Seattle
Full Time
Nov 29
$170k-230k