Cloud Security EngineerYou

The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone., Cloud security collaborates with infrastructure and application teams closely. The areas we cover are infrastructure security, workload security, and CI/CD hardening.

Our team is dedicated to building resilient, automated systems at scale. We take a hybrid approach to our toolkit: we utilize the best of open-source (OPA, Trivy, Spire) and COTS products, while still writing custom code to automate workflows and harden our global digital integrity. You'll help us strike the perfect balance between leveraging existing solutions and building custom ones from the ground up.

In this role you will

• Secure Aurora's cloud environment in the areas of but not limited to:

• Manage IAM roles and policies

• Enforce security controls

• Construct security boundaries for resources and services

• Provide security guidance involving Cloud and Kubernetes

Create automation to solve security problems at the root

Design, build, and configure security infrastructure clouds such as like AWS, Azure, or Google Cloud Platform

• 5+ years of progressive experience in security engineering
• Understanding of fundamental security concepts such as Authentication, Authorization, Zero-Trust, and their application to cloud native infrastructure and applications.
• Hands-on experience in securing cloud and Kubernetes environments. Experience with Kubernetes admission controllers, vulnerability management, supply-chain security, network security, and use of mTLS and PKI to secure infrastructure.
• Ability to design and implement security controls for Kubernetes, including strong knowledge of authorization models, admission controllers, and security best practices.
• Understanding of modern Identity and Access Management (IAM) standards and technologies such as OAuth2/OIDC, SAML.
• Proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation.
• Experience writing and using Terraform.

Desirable qualifications

• Deep fundamental understanding of enterprise-level network security, operating system (Linux), Kubernetes, CI/CD, and application security principles.
• Familiarity with compliance frameworks (e.g., SOX, SOC 2, ISO 27001).
• Familiarity with machine identity frameworks like SPIFFE/SPIRE, mTLS or equivalent.

The base salary range for this position is $162,000 - $235,000 per year. Aurora's pay ranges are determined by role, level, and location. Within the range, the successful candidate's starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.

Aurora's mission is to deliver the benefits of self-driving technology safely, quickly, and broadly., Working at AuroraAt Aurora, we bring together extraordinarily talented and experienced people united by the strength of our values. We operate with integrity, set outrageous goals, and build a culture where we win together - all without any jerks. We believe in-person work increases collaboration, empathy and our ability to lead effectively. As a result, we operate in a hybrid work environment where Aurorans are in office at least 3 days per week. Our Careers page provides insight into what it is like to work at Aurora, and you can find all the latest updates in our Newsroom. Our commitment to safety At the core of everything we do is our commitment to safety. Building best-in-class self-driving technology will take time, and we believe that each employee at Aurora has a role in contributing to safety, every step of the way. Aurora expects commitment to our safety policies from every employee, and seeks candidates who take an active responsibility, can contribute to building an atmosphere of trust, and invest in the organization's long-term success by prioritizing working safely, no matter what. Our commitment to inclusion