Zoox is looking for an AWS Security Engineer to lead the design and implementation of secure, scalable, and software-defined infrastructure in their AWS cloud environment.
Requirements
- Deep technical expertise in IAM, network security, and AWS services (VPC, ECS/EKS, EC2, S3, CloudTrail, KMS, etc.).
- Strong proficiency with Infrastructure as Code (Terraform preferred).
- Strong understanding of encryption, key management, and secure connectivity.
- Programming/scripting skills (Python, Go, or similar) for automation and integration.
- Experience implementing automated compliance and audit frameworks (CIS, SOC2, ISO 27001).
- Experience with container and workload security (EKS, ECS, Kubernetes).
- AWS Certified Security – Specialty or AWS Solutions Architect – Professional.
Responsibilities
- Lead the architecture of secure, resilient AWS environments following AWS best practices.
- Architect and enforce enterprise IAM strategies including roles, permissions boundaries, and identity federation.
- Design and implement secure VPC topologies, private connectivity, and hybrid network patterns (Transit Gateway, PrivateLink, etc.).
- Establish continuous auditability of cloud assets and configuration states using AWS Config, CloudTrail, and Security Hub.
- Implement secure infrastructure using Terraform, AWS CDK, or CloudFormation.
Other
- 8+ years of hands-on experience in cloud or infrastructure security, with at least 5 years focused on AWS.
- You’ll act as a security champion, ensuring that infrastructure designs meet the highest standards of confidentiality, integrity, and availability — while maintaining operational efficiency and scalability through Infrastructure as Code (IaC).
- partnering with engineering and platform teams to embed security into every layer of our technology stack.
- A sign-on bonus may be offered as part of the compensation package.
- The salary range listed in this posting is representative of the range of levels Zoox is considering for this position.
