Job Description
The role involves designing, implementing, and managing cloud security infrastructure and controls within AWS and Kubernetes EKS, serving as a technical security leader, and automating security processes to protect Aurora's autonomous driving platform.
Key Responsibilities
- Design and implement security infrastructure services such as certificate management, secrets management, and authentication/authorization systems.
- Manage security boundaries, access controls, and IAM policies within AWS environment.
- Implement network security controls within VPCs, including security groups, ACLs, and private connectivity.
- Develop and maintain security best practices and tooling within AWS and Kubernetes EKS.
- Monitor, report, and automate remediation of security controls using tools like AWS Config, GuardDuty, and custom automation.
- Conduct threat modeling and translate risks into security requirements and controls.
- Perform security design reviews for new systems and features, providing security guidance to engineering teams.
- Develop and maintain security infrastructure and controls using Infrastructure as Code (IaC) principles.
- Lead advanced threat modeling exercises and translate risks into security requirements.
- Automate security remediation and eliminate vulnerabilities through scalable automation tools.
Requirements
- A minimum of 7 years of progressive experience in software, platform, or security engineering, with at least 3 years focusing exclusively on public cloud security AWS required.
- Experience in identifying and managing security risk, and the ability to navigate organizational friction to manage these risks.
- Expert-level, hands-on experience securing and operating complex environments in AWS, including expertise with IAM, VPC Networking, Security Hub, Config, GuardDuty, and KMS.
- Proven ability to design and implement security controls for Kubernetes EKS, including strong knowledge of authorization models, admission controllers, and security best practices.
- Expertise in one or more Identity and Access Management (IAM) standards and technologies such as PKI, OAuth2, OIDC, SAML, and commercial solutions like Okta.
- Strong proficiency in at least one modern programming or scripting language such as Python or Go for building security automation, tools, and remediation services.
- Experience writing, reviewing, and scaling infrastructure with Terraform.
- Deep fundamental understanding of enterprise-level network security, operating system security (Linux), and application security principles.
- Experience implementing DevSecOps practices, including integration of security testing (SAST, DAST, SCA) into CI/CD pipelines (e.g., GitLab, Jenkins).
Benefits & Perks
Salary range: $198,000 - $280,000 per year
Annual bonus
Equity compensation
Benefits (unspecified)
Ready to Apply?
Join Aurora and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Aurora
Jobs in Pittsburgh, Pennsylvania
More jobs at Aurora
Identity Access Management Architect
Aurora
NEW
Pittsburgh
Full Time
18h
$191k-277k
Identity Access Management Architect
Aurora
NEW
Seattle
Full Time
18h
$212k-307k
Identity Access Management Architect
Aurora
NEW
San Francisco
Full Time
18h
$212k-307k
More jobs in Pittsburgh, Pennsylvania
Engineering Manager Water Resources
res
NEW
Pittsburgh
Full Time
18h
Plumbing Fire Protection II
Cannon Design
Pittsburgh
Full Time
Jan 31
Design Student Intern
Cannon Design
Pittsburgh
Internship
Jan 25