Uber Senior Staff Security Engineer zero-trust identity & cloud-native 

United States, West Virginia 

373292855

About the Role

In this role, you will be a thought leader responsible for designing, implementing, and optimizing multi-tenanted zero-trust identity security models within cloud-native architectures. You will work across teams to establish robust security design patterns to ensure compliance with industry best practices while protecting sensitive data. You will be influential to shape Uber engineering to adopt ‘shifting-left’ security principals, leading to an overall proactive cybersecurity maturity.

- - - - What the Candidate Will Do ----

1. Cloud IAM Strategy : Define and drive the strategy for securing cloud environments (GCP, OCI as predominant cloud, plus AWS and Azure) leveraging modern identity tools and techniques through well-defined federation strategies.
2. Policy Enforcement : Build and manage security policies, including identity and access management (IAM), network segmentation, and endpoint protections in a zero-trust model.
3. Zero-Trust Architecture Development : Design and implement scalable zero-trust frameworks for cloud-native applications, ensuring secure access and communication across microservices.
4. Engineering excellence: Develop automated security validation pipelines using Infrastructure-as-Code (IaC) tools (e.g., Terraform, Kubernetes). Be intentional about automation, reliability and scalability.
5. Collaboration and Mentorship : Act as a technical leader, mentoring engineers and collaborating with DevOps, infrastructure, and application teams to align IAM security strategies.

- - - - Basic Qualifications ----

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field.
• 10+ years of experience in software engineering, with a focus on cloud-native systems and identity security.
• Proven expertise in zero-trust security models and architectures.
• Skilled in multi-cloud and hybrid SaaS ecosystem
• Understanding of Kubernetes, container runtime; versatile in cloud native security technologie
• Domain Expertise in cloud-native security tools (e.g.,Istio, Linkerd, Calico, OPA).
• Domain knowledge of identity IDP, federation, SSO, FIDO2, MFA, and PKI, Cloud IAM
• Proficiency with scripting and automation (Python, Go) and DevSecOps practices.
• Familiarity with SIEM, EDR, and logging solutions such as Splunk or Elastic Stack.
• Leadership and ability to influence cross-functional teams.
• Strong analytical and problem-solving skills; data-driven approaches
• Excellent written and verbal communication.

- - - - Preferred Qualifications ----

The role focuses on zero-trust architect, design patterns, cloud native systems. The following skillsets are bonus security skillsets that makes the role more effective:

1. Threat Modeling & Risk Management : Perform threat modeling, vulnerability assessments, and familiarity with risk analysis for complex cloud-native systems.
2. Threat detection and incident response : familiar with security incidents, ability to develop proactive strategies to mitigate risks through close collaboration with cyber defense teams.
3. Compliance & Standards : Ensure adherence to regulatory compliance frameworks such as GDPR, HIPAA, SOC 2, and NIST 800-207.

For San Francisco, CA-based roles: The base salary range for this role is USD$257,000 per year - USD$285,500 per year.

For Seattle, WA-based roles: The base salary range for this role is USD$257,000 per year - USD$285,500 per year.

For Sunnyvale, CA-based roles: The base salary range for this role is USD$257,000 per year - USD$285,500 per year.