Infrastructure Security Engineer
Foster City, CA
ZooxWe’re reinventing personal transportation—making the future safer, cleaner, and more enjoyable for everyone. This is on-demand autonomous ride-hailing.
Responsibilities (What you will do)
- Find, triage, and guide the resolution of cloud configuration issues found by commercial tooling, internal tooling, and independent research.
- Translate Zoox policies and standards into specific infrastructure guidance for teams, including feedback on their system design documents and existing infrastructure.
- Work with other teams to make our infra-design patterns and infrastructure-as-code modules secure by design.
- Improve the developer experience of “shift-left” infrastructure security-related systems and workflows.
- Configure, integrate, modify, and develop off-the-shelf and custom security tools.
- Collaborate with feature teams and other cybersecurity teams across the company.
- Maintain awareness of new developments and technologies and suggest things to try as well as more substantial architectural changes as best practices evolve.
- Independently develop project briefs into actionable plans and carry them through.
- Contribute to and eventually own the infrastructure part of our team’s long-term roadmap.
- 6+ years of experience across software engineering, cloud infrastructure operations / SRE / DevOps, and cybersecurity.
- 3+ years of experience in a software engineering role or developing SRE / DevOps / cybersecurity tooling of substantial scope.
- Knowledge of cloud environments (we use AWS), automation tooling, configuration management, infrastructure-as-code, and container-based workload orchestrators.
- Experience with cloud security concepts, common problems, and their resolutions, and infrastructure hardening in the cloud.
- Persuasion, emotional intelligence, asynchronous communication skills, and relationship-building skills that enable you to achieve complex goals on short deadlines by teams that do not report to you.
- Experience using formal (threat model, attack graph, TARA) and informal ways to enumerate threats and evaluate risks, present them in the context of common cybersecurity frameworks, and then recommend multiple mitigation strategies.
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Officer jobs
- Open Security Operations Engineer jobs
- Open Analyste CERT / Incident Responder junior (H/F) jobs
- Open Ingénieur DevSecops H/F jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Security Architect jobs
- Open Chief Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Analyste CERT / Incident Responder senior (H/F) jobs
- Open o365 Security Architect jobs
- Open Senior Security Analyst jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Staff Product Security Engineer jobs
- Open Electronic Warfare Advanced Tactical Trainer jobs
- Open Product Security Engineer jobs
- Open Security Researcher jobs
- Open Cyber Security Architect jobs
- Open GCP-related jobs
- Open SOC-related jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open Governance-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Analytics-related jobs
- Open CISM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Security assessment-related jobs
- Open Forensics-related jobs
- Open APIs-related jobs
- Open SQL-related jobs
- Open CI/CD-related jobs
- Open EDR-related jobs