Zoox is seeking a seasoned Senior Cloud Security Engineer to lead the design and implementation of advanced security frameworks for our AWS cloud infrastructure. This role requires a strategic thinker with deep technical expertise in cloud security architecture, network security principles, and cloud-native vulnerability management. The ideal candidate will blend hands-on technical skills with leadership capabilities to guide both security initiatives and team development.

In this role, you will:

Cloud Security Engineering and Architecture
Design and implement enterprise-grade AWS security architectures using zero-trust principles
Develop organization-wide security standards for IAM, VPC configurations, and data protection mechanisms
Architect multi-account AWS environments with Security Hub, GuardDuty, and AWS Config integrations
Lead Cloud Security Posture Management (CSPM) initiatives using Infrastructure-as-Code (Terraform/CloudFormation)

Network Security
Design and support secure network architectures using AWS constructs (TGW, GWLB, Firewalls)
Implement layered defenses with WAF, Firewalls, Security Groups, and Network ACLs
Optimize security controls for hybrid cloud environments and SD-WAN integrations

Cloud Vulnerability Management
Establish risk-based vulnerability prioritization frameworks for cloud assets
Develop automated remediation pipelines using CI/CD tools and OPA policies
Conduct attack surface analysis through cloud-specific threat modeling

Leadership Expectations
Mentor a team of 2 or more Cloud Security Analysts
Lead cross-functional collaboration with SRE, ProdSec, IT, and Software Engineering teams
Develop security training programs and cloud security certification paths
Oversee vendor relationships for cloud security tooling and services
3+ years managing technical teams in security operations or engineering
Proven experience developing security analysts through mentorship
Strong background in creating security policy frameworks and technical documentation

Qualifications:

15+ years combined experience in network security and cloud security engineering Masters degree in Cybersecurity, Computer Science, or equivalent professional experience
Expert-level AWS security implementation experience (5+ years in enterprise environments)
Proficiency with security automation using Python/Go and/or Terraform
Deep understanding of NIST CSF, MITRE ATT&CK Cloud Matrix, and CIS AWS Benchmarks

Bonus Qualifications:

AWS Certified Security - Specialty
CISSP, CISM, or CCSP
Palo Alto Networks Certified Security Engineer

Compensation

There are three major components to compensation for this position: pay, Amazon Restricted Stock Units (RSUs), and Zoox Stock Appreciation Rights. The pay range for this position is $180,000 to $225,000. A sign-on bonus may be offered as part of the compensation package. Compensation will vary based on geographic location and level. Leveling, as well as positioning within a level, is determined by a range of factors, including, but not limited to, a candidates relevant years of experience, domain knowledge, and interview performance. The pay range listed in this posting is representative of the range of levels Zoox is considering for this position.

Zoox also offers a comprehensive package of benefits including paid time off (e.g. sick leave, vacation, bereavement), unpaid time off, Zoox Stock Appreciation Rights, Amazon RSUs, health insurance, long-term care insurance, long-term and short-term disability insurance, and life insurance.