Current jobs related to Staff Product Security Engineer - Seattle WA United States - Aurora Innovation
-
Staff Product Security Engineer
4 weeks ago
Seattle, Washington, United States MongoDB Full timeAbout the RoleMongoDB is seeking a highly skilled Product Security Engineer to join our team. As a Product Security Engineer, you will play a critical role in strengthening our products and protecting our customers' data.You will be responsible for designing, implementing, and operating systems that protect customer data, as well as collaborating with...
-
Staff Product Security Engineer
3 weeks ago
Seattle, Washington, United States MongoDB Full timeAbout MongoDBMongoDB is a leading provider of modern data management solutions, empowering innovators to create, transform, and disrupt industries by unleashing the power of software and data.We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash...
-
Software Engineer II, Platform Security
4 days ago
Seattle, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout The RoleAbnormal Security is looking for a Software Engineer II who is a solid software developer with a strong interest in Security & Privacy to join the Platform Security team. The Platform Security team owns the Security and Privacy platform services and infrastructure to uphold industry standards for the company's...
-
Staff Engineer, Security Engineering Team
3 weeks ago
Seattle, Washington, United States Coupang Full timeWe are seeking a highly skilled Staff Engineer to join our Security Engineering team at Coupang. As a Staff Engineer, you will be responsible for designing and leading the development of our cloud security platform, ensuring the security and integrity of our internal and external applications.Key Responsibilities:Take ownership of internal security...
-
Staff Engineer, Security Engineering Team
3 weeks ago
Seattle, Washington, United States Coupang Full timeJob Description:We are seeking a highly skilled Staff Engineer to join our Security Engineering team at Coupang. As a Staff Engineer, you will be responsible for designing and leading the development of our security platform, ensuring the highest level of security and reliability for our customers.Key Responsibilities:Take ownership of internal security...
-
Product Security Operations Engineer
4 weeks ago
Seattle, Washington, United States Apple Full timeProduct Security Operations EngineerAs a Product Security Operations Engineer at Apple, you will be part of a team that passionately protects Apple and our customers from all emerging security threats. Your focus will be on triaging security and privacy issues at scale to find, communicate about, handle, recover from, and learn from security incidents.You...
-
Principal Product Security Engineer
4 weeks ago
Seattle, Washington, United States Expedia Partner Solutions Full timeJob Title: Principal Product Security EngineerAbout the Role:We are seeking a highly skilled Principal Product Security Engineer to join our team at Expedia Partner Solutions. As a key member of our security team, you will be responsible for designing and deploying innovative security solutions to protect our cloud-based products and services.Key...
-
Product Security Engineer
2 months ago
Milwaukee, WI, United States Northwestern Mutual Full timeAt Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference. Northwestern Mutual is looking for enthusiastic technologists who want to grow their career in product security. In this position, you will work with cross-functional teams while leveraging a set of diverse...
-
Product Security Engineer
1 month ago
Milwaukee, WI, United States Northwestern Mutual Full timeAt Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference. Northwestern Mutual is looking for enthusiastic technologists who want to grow their career in product security. In this position, you will work with cross-functional teams while leveraging a set of diverse...
-
Staff Cloud Security Engineer
3 weeks ago
Seattle, Washington, United States Zscaler Full timeAbout ZscalerZscaler (NASDAQ:ZS) was founded in 2007 with a mission to make the cloud a safe place to do business and a more enjoyable experience for enterprise users.As the operator of the world's largest security cloud, Zscaler accelerates digital transformation so enterprises can be more agile, efficient, resilient, and secure.The pioneering, AI-powered...
-
Principal Product Security Engineer
4 weeks ago
Seattle, Washington, United States Expedia Partner Solutions Full timeJob Title: Principal Product Security EngineerExpedia Partner Solutions is seeking a highly skilled Principal Product Security Engineer to join our team. As a key member of our security team, you will be responsible for designing and deploying innovative security solutions to protect our products and services.Key Responsibilities:Design and implement...
-
Director of Product Security Engineering
3 weeks ago
Seattle, Washington, United States MongoDB Full timeEmpowering Innovation through Secure Data ManagementMongoDB is committed to empowering innovators to create, transform, and disrupt industries by unleashing the power of software and data. As a key member of our team, you will play a critical role in strengthening our products and increasing our resonance with customers.About the RoleWe are seeking a...
-
Director of Product Security Engineering
3 weeks ago
Seattle, Washington, United States MongoDB Full timeTransforming Industries through Secure Data ManagementMongoDB is revolutionizing the way organizations manage and utilize data. As a key member of our team, you will play a pivotal role in ensuring the security and integrity of our products and services.We are seeking a seasoned security engineering leader to join our team. With a strong background in...
-
Product Security Engineer
7 days ago
San Diego, CA, United States BioTalent Full timeOur Software Engineering (R&D) department is looking for a Security Engineer experienced in medical device or instruments security and systems to join our team, pivotal in building and enhancing security in our products and services! As a Product Security Engineer, you will be involved in our molecular diagnostics products and responsible for:Monitoring the...
-
Product Security Engineer, Payments Security
5 months ago
Seattle, United States Amazon.com Services LLC Full timeAmazon Payments processes millions of transactions every day across numerous countries and payment methods. Over 100 million customers and merchants send tens of billions of dollars through our systems annually. We are re-inventing the vision of our platform to provide our internal and external clients the best payment gateway service, benchmarked against...
-
Staff Engineer, Security Engineering
1 week ago
Chicago, IL, United States Grubhub Full timeGrubhub is seeking a seasoned Staff-level Software Engineer to design, develop, and maintain security infrastructure and tools to protect the company's platform and data. Grubhub is in growth-mode and we need standardized processes and tools that can be scaled across the organization, to ensure that security measures keep up with the pace of the business....
-
Regional Security Manager
5 days ago
Seattle, WA, United States Sunstates Security Full timeOverviewJoin one of the fastest-growing and largest privately held security companies in the U.S.! Since 1998, Sunstates Security has established a reputation for providing excellent customer service and quality work environments for its team across the country. We're committed to hiring, developing, and retaining a diverse and exceptionally qualified...
-
Security Engineer II, Industry Products
4 weeks ago
Seattle, Washington, United States Amazon Full timeAbout the RoleWe are seeking a highly skilled Security Engineer to join our team at Amazon. As a Security Engineer, you will be responsible for designing and implementing security controls to protect our cloud-based services and applications.Key responsibilities include:Conducting security reviews for new products and technologiesDeveloping and implementing...
-
Security Engineer
1 week ago
Seattle, WA, United States RED SKY Consulting Full timeJob Title: Security Engineer - CloudLocation: Hybrid Onsite in Issaquah, WA or Chicago, IL 3x / Week Type: Direct Hire Bottom Line / In a Nutshell: Ideally around 10 years in the industry 5+ years in Security EngineeringSecurity Engineering experience with ecommerce/Retail sites/services hosted in Cloud (Azure/GCP)Experience with Security Tools and...
-
Senior Staff Software Security Engineer
3 weeks ago
Seattle, Washington, United States Databricks Full timeJob SummaryWe are seeking a Senior Staff Software Security Engineer to join our Trust & Safety team at Databricks. As a key member of our security engineering discipline, you will represent our security vision and strategy throughout the organization.Key ResponsibilitiesRepresent Databricks at academic and industry conferences & eventsDevelop and implement...
Staff Product Security Engineer
2 months ago
Our team is responsible for ensuring the secure design and implementation of the technology built for the Aurora Driver as well as continually improving the assurance levels of security across all of Aurora's Products. This team is also responsible for performing technical security assessments, threat modeling, security code reviews and vulnerability testing to highlight risk and help various engineering teams and partners to improve security. We work closely with engineers across Aurora as well as 3rd party partners to design and proactively integrate initiatives to enhance security across a wide variety of software or hardware domains and technology stacks. We are searching for an experienced Security Engineer with strong application security experience that is excited to lead and improve the overall application security posture for the autonomous vehicle platform to join us on this mission.
In this role, you will
- Perform secure design reviews and threat modeling. Identify and prioritize risks, attack surfaces, and vulnerabilities.
- Perform security code reviews of source code changes and advise developers on remediating vulnerabilities and following secure coding practices.
- Perform technical security assessments and reviews, research, uncover, and reproduce vulnerabilities, design secure protocols and systems, and write tests and fuzzers to drive architecture changes.
- Manage the vulnerability management process and program through triage, prioritization, tracking, remediation, and validation of vulnerabilities from audits, scans and external reports.
- Employ techniques including reverse engineering, fuzzing, and static and/or dynamic analysis.
- Conduct research to identify new and novel attack vectors against Aurora's products and services.
- Review, develop and document secure operational best practices, and provide security guidance for engineers and various internal and external partners.
- Develop and manage a secure software development lifecycle.
- Develop and manage a bug bounty program.
- Research, recommend, and develop security tools and technologies to strengthen defenses against emerging threats and vulnerabilities.
- Work with Engineering teams and OEMs to ensure successful security assurance of the Aurora Driver platform and services.
- Advocate, guide and mentor both security and non-security engineers to instill security best practices through secure architecture, design, and development.
Required Qualifications- Ability to read and review production-quality code in C++, Golang, and Python.
- Ability to write proficiently in C++, Golang, and Python.
- Foundational knowledge of operating system security for Linux.
- Foundational knowledge of the CWE Top 25.
- Ability to assess software and/or hardware components with and without full knowledge.
- Ability to work well with other assessment members and engineering partners.
- Ability to communicate effectively with technical and non-technical audiences.
- Experience in one or more of the following: risk assessment, threat modeling, incident and emergency response, OS hardening, vulnerability management, pentesting, offensive security or cryptographic protocols and concepts.
- Experience in vulnerability discovery and analysis, design review, and code-level security reviews.
- Experience in, and technical knowledge of security engineering, computer and network security, authentication and security protocols, and applied cryptography.
- Experience with assessment, development, implementation, and documentation of a comprehensive and broad set of security technologies and processes.
- Familiarity with automotive protocols and security standards.
- Experience in Security Assurance / Secure-SDLC processes in an agile / waterfall environment.
- Experience building and evaluating threat models / risk assessments.
- Experience and ability to implement best practices related to cryptographic protocols, infrastructure and network security.
- Minimum 8 years of experience in a security-specific or security-adjacent industry.
- Minimum 2 years of experience in the robotics or automotive industry or equivalent.
Desirable Qualifications- Relevant work experience in offensive security, penetration testing or red teaming.
- Experience implementing various Defense in Depth Strategies to address dynamic threats across various software and hardware stacks.
- Ability and desire to write production-quality code in C++, Golang, and/or Python.
- Experience evaluating the security of software, hardware and services.
- Foundational knowledge of embedded firmware security and hardware security, preferably in the robotics or automotive space.
- Familiarity with cloud security (AWS) and infrastructure-as-code.
- Familiarity with Trusted Platform Modules, HSMs, and trusted boot.
- A history of giving back to the security industry via open source contributions, published papers, or conference presentations.
#J-18808-Ljbffr
