Staff Security Engineer, Platform Security (PKI & Secrets Management)
US Remote
Cruise LLC
Cruise is the leading self-driving car company driven to improve life in our cities by safely connecting people with places, things & experiences they love.We're Cruise, a self-driving service designed for the cities we love.
We’re building the world’s most advanced, self-driving vehicles to safely connect people to the places, things, and experiences they care about. We believe self-driving vehicles will help save lives, reshape cities, give back time in transit, and restore freedom of movement for many.
Cruisers have the opportunity to grow and develop while learning from leaders at the forefront of their fields. With a culture of internal mobility, there's an opportunity to thrive in a variety of disciplines. This is a place for dreamers and doers to succeed.
If you are looking to play a part in making a positive impact in the world by advancing the revolutionary work of self-driving cars, join us.
You will leverage deep understanding of user needs to help define, design and build products that are in line with Cruise’s mission and strategy. You will play a key role in designing, building and implementing technological solutions that enable Cruise engineers to contribute to Cruise's overall security posture and solve complex security problems. You must be a self-starter who thrives in a fast-paced, agile environment – which means wearing many hats, being able to change direction quickly, and showing an eagerness to learn and introduce new technologies as the need arises.
This position does have the possibility of being remote.
What you'll be doing:
Building and operating foundational services that improve PKI and secrets management of our platform
Leading architecture and major design decisions that will affect access to secrets and internal webs of trust
Maintaining and building interdisciplinary skills through research, experimentation, and exploration
Consulting with leadership on foundational security architecture decisions that will affect Cruise for years to come
Developing processes, policies, systems, software, and controls to maintain and operate Cruise's internal PKI and Secrets management systems
Working with engineers and management across organizational boundaries to provide a robust and observable public-key infrastructure
Mentoring other team members
What you must have:
You have experience working with or operating secrets management systems, (e.g., Vault, KMS)
You have experience designing and/or operating a production-level public-key infrastructure
You have a solid understanding of public-key cryptography and cryptographic protocols/primitives
You've operated and have an in-depth understanding of cloud infrastructure platforms, (AWS, GCP, Azure)
You have experience using infrastructure-as-code tools, (e.g., Terraform)
You have experience working with modern development and deployment workflows (containerization, container orchestration, CI/CD etc.)
You possess strong security fundamentals and have solid threat modeling and security architecture skills
Experience writing performant, maintainable, testable code in at least one of the following: Go, Rust, Python, or Node.js
BS, MS or PhD in CS, Math, Physics, or equivalent real-world experience
Passion for self-driving technology and its potential impact on the world
Attention to detail and a passion for correctness
You can draw the owl
Bonus points!
Direct experience with Hashicorp Vault
Experience scaling back-end systems
Experience with remote attestation
Experience leveraging purpose-built secure hardware (HSM, TPM, SE, SEP, TEE, etc.)
Experience with or an understanding of modern authentication and authorization protocols and concepts, (OAuth 2.0, OIDC, WebAuthn/FIDO2, Zero Trust)
Experience participating in an on-call rotation for global, critical services
- Our benefits are here to support the whole you:
- Competitive salary and benefits
- 401(k) Cruise matching program
- Medical / dental / vision, AD+D and Life
- One Medical membership
- Subsidized mental health benefits
- Flexible vacation and company paid holidays
- Healthy meals and snacks provided for non-remote employees
- Paid parental, jury duty, bereavement, family care and medical leave
- Fertility Benefits
- Dependent Care Flexible Spending Account, subsidized by Cruise
- Flexible Spending Account
- Monthly wellness stipend
- Pre-tax Commuter Benefit Plan for non-remote employees
- CruiseFlex - a working policy for US-Based Cruisers that lets you and your manager find what working style is best for you, whether it’s primarily in-person, primarily at home or a combination of home and in-office time.
- We’re Integrated
- Through our partnerships with General Motors and Honda, we are the only self-driving company with fully integrated manufacturing at scale.
- We’re Funded
- GM, Honda, Microsoft, T. Rowe Price & Walmart have invested billions in Cruise. Their backing for our technology demonstrates their confidence in our progress, team, and vision and makes us one of the leading autonomous vehicle organizations in the industry. Our deep resources greatly accelerate our operating speed.
- We’re Independent
- We have our own governance, board of directors, equity, and investors. Our independence allows us to not just work on the edge of technology, but also define it.
- We’re Vested
- You won’t just own your work here, you’ll have the potential to own equity in Cruise, too. We are competing in a market that is projected to grow exponentially, which gives our company valuation room to grow.
- Recurring Liquidity Opportunity (RLO) - a unique equity program where employees, both current and former, have the option to sell any amount of their vested equity on a recurring basis, currently quarterly.
Cruise LLC is an equal opportunity employer. We strive to create a supportive and inclusive workplace where contributions are valued and celebrated, and our employees thrive by being themselves and are inspired to do the best work of their lives.
We seek applicants of all backgrounds and identities, across race, color, ethnicity, national origin or ancestry, citizenship, religion, sex, sexual orientation, gender identity or expression, veteran status, marital status, pregnancy or parental status, or disability. Applicants will not be discriminated against based on these or other protected categories or social identities. Cruise will consider for employment qualified applicants with arrest and conviction records, in accordance with applicable laws.
Cruise is committed to the full inclusion of all applicants. If reasonable accommodation is needed to participate in the job application or interview process please let our recruiting team know or email HR@getcruise.com.
We proactively work to design hiring processes that promote equity and inclusion while mitigating bias. To help us track the effectiveness and inclusivity of our recruiting efforts, please consider answering the following demographic questions. Answering these questions is entirely voluntary. Your answers to these questions will not be shared with the hiring decision makers and will not impact the hiring decision in any way. Instead, Cruise will use this information not only to comply with any government reporting obligations but also to track our progress toward meeting our diversity, equity, inclusion, and belonging objectives.
Vaccine Mandate.
At Cruise, we’re tasked with leading in the communities we serve — and doing our part to help keep our communities and our teams safe. Our #StaySafe culture transcends and informs all we do, and because of this, as of October 31, 2021 Cruise will be mandating COVID-19 vaccinations for all US-based Cruisers who need or want to access any of our US Cruise facilities and engage in any business travel — including attending any in-person Company-sponsored event.
If you are unable to get a vaccine due to a medical condition, disability, or a strongly-held religious belief, Cruise will consider requests for an accommodation.
Note to Recruitment Agencies: Cruise does not accept unsolicited agency resumes. Furthermore, Cruise does not pay placement fees for candidates submitted by any agency other than its approved partners.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile AWS Azure CI/CD Cloud Cryptography GCP Governance Node.js PhD Physics PKI Python Rust Strategy Terraform
Perks/benefits: Career development Competitive pay Equity Fertility benefits Flex hours Flexible spending account Flex vacation Health care Home office stipend Medical leave Parental leave Salary bonus Snacks / Drinks Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Security Operations Engineer jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs