Senior Staff Security Engineer, zero-trust identity & cloud-native
$257,000 - $285,500/Yr
Uber - Seattle, WA
posted 5 days ago
Full-time - Senior
Seattle, WA
Transit and Ground Passenger Transportation
About the position
We are seeking a highly skilled Senior Staff Cloud Native Security Engineer to join our cutting-edge technology team. In this role, you will be a thought leader responsible for designing, implementing, and optimizing multi-tenanted zero-trust identity security models within cloud-native architectures. You will work across teams to establish robust security design patterns to ensure compliance with industry best practices while protecting sensitive data. You will be influential to shape Uber engineering to adopt 'shifting-left' security principals, leading to an overall proactive cybersecurity maturity.
Responsibilities
- Define and drive the strategy for securing cloud environments (GCP, OCI as predominant cloud, plus AWS and Azure) leveraging modern identity tools and techniques through well-defined federation strategies.
- Build and manage security policies, including identity and access management (IAM), network segmentation, and endpoint protections in a zero-trust model.
- Design and implement scalable zero-trust frameworks for cloud-native applications, ensuring secure access and communication across microservices.
- Develop automated security validation pipelines using Infrastructure-as-Code (IaC) tools (e.g., Terraform, Kubernetes). Be intentional about automation, reliability and scalability.
- Act as a technical leader, mentoring engineers and collaborating with DevOps, infrastructure, and application teams to align IAM security strategies.
Requirements
- Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
- 10+ years of experience in software engineering, with a focus on cloud-native systems and identity security.
- Proven expertise in zero-trust security models and architectures.
- Skilled in multi-cloud and hybrid SaaS ecosystem.
- Understanding of Kubernetes, container runtime; versatile in cloud native security technologies.
- Domain Expertise in cloud-native security tools (e.g., Istio, Linkerd, Calico, OPA).
- Domain knowledge of identity IDP, federation, SSO, FIDO2, MFA, and PKI, Cloud IAM.
- Proficiency with scripting and automation (Python, Go) and DevSecOps practices.
- Familiarity with SIEM, EDR, and logging solutions such as Splunk or Elastic Stack.
- Leadership and ability to influence cross-functional teams.
- Strong analytical and problem-solving skills; data-driven approaches.
- Excellent written and verbal communication.
Nice-to-haves
- Perform threat modeling, vulnerability assessments, and familiarity with risk analysis for complex cloud-native systems.
- Familiar with security incidents, ability to develop proactive strategies to mitigate risks through close collaboration with cyber defense teams.
- Ensure adherence to regulatory compliance frameworks such as GDPR, HIPAA, SOC 2, and NIST 800-207.
Benefits
- Eligible to participate in Uber's bonus program.
- May be offered an equity award & other types of compensation.
- Eligible for various benefits.
