Sr. Staff Security Engineer

Uber-posted 3 months ago
$265,000 - $294,000/Yr
Full-time • Senior
New York, NY
5,001-10,000 employees
Transit and Ground Passenger Transportation
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The security organization at Uber is dedicated to enabling safe and secure innovation while protecting the communities we serve both online and in the physical world. Our team is responsible for protecting both people and their data across intersections of the digital and physical world. The primary objective for Uber's Engineering Security team is to enable the technical ambitions of the company while maintaining the highest standards of security and privacy for our customers and partners. As cybersecurity threats evolve, so do we. Our mission is to protect, defend, and secure Uber's products, infrastructure and data by building highly available, scalable and extensible security solutions and services. We are focused on proactively identifying and remediating security risks as well as swiftly detecting and mitigating security incidents. In the ever-evolving landscape of cybersecurity, we continuously adapt and evolve our defenses in order to always stay one step ahead of potential threats.

  • Lead the technical direction and architecture of our cyber security defense capabilities, including areas such as enterprise security posture management, threat detection and response, and vulnerability management.
  • Design and implement robust and scalable security solutions leveraging a diverse range of technologies (e.g., SIEM, EDR, SOAR, cloud security platforms, IAM).
  • Lead incident response efforts, including investigation, containment, and recovery activities. Perform post-incident analysis and recommend improvements to prevent future occurrences.
  • Proactively research and evaluate emerging security threats, technologies, and trends, and provide recommendations for their adoption to enhance our security posture.
  • Collaborate effectively with cross-functional teams, including Engineering, IT, Legal, and Compliance, to integrate security considerations into the development lifecycle and business processes.
  • Mentor and provide technical guidance to junior security engineers, fostering a culture of continuous learning and growth within the team.
  • Contribute to the development and automation of security tools and processes to improve efficiency and effectiveness.
  • Communicate complex security concepts and risks effectively to both technical and non-technical audiences.
  • Participate in security audits and compliance initiatives, providing technical expertise and ensuring adherence to security standards.
  • Bachelor's Degree or equivalent in Computer Science, Engineering, Information Security or related field
  • 10+ years full-time work experience in security engineering, with a strong focus on security defense and incident response.
  • Deep technical expertise in multiple security domains, such as network security, endpoint security, cloud security (GCP, OCI, Azure, AWS), and identity and access management.
  • Strong scripting and automation skills (e.g., Python, PowerShell, Bash, Golang) are highly desirable.
  • Proven experience designing, implementing, and managing complex security solutions at an enterprise level.
  • Excellent analytical and problem-solving skills, with the ability to diagnose and resolve complex security issues.
  • A proactive and results-oriented mindset with a passion for staying ahead of the evolving threat landscape.
  • Experience leading technical security projects and mentoring other engineers.
  • Excellent communication, collaboration, and interpersonal skills, with the ability to effectively communicate technical information to diverse audiences.
  • Master's Degree or PhD in Computer Science, Engineering, Information Security or related field
  • Proficiency in security tools and technologies, including SIEM platforms (e.g., Splunk, Chronicle), EDR solutions (e.g., CrowdStrike, SentinelOne), vulnerability scanners (e.g., Qualys, Nessus), and penetration testing tools.
  • Strong understanding of security frameworks and standards (e.g., NIST CSF, ISO 27001, SOC 2).
  • Familiarity with the development of production services on public cloud providers (GCP, OCI, Azure or AWS)
  • Experience with AI technologies and frameworks and incorporating them into production systems
  • Experience in leading complex projects across multiple engineering organizations
  • Eligible to participate in Uber's bonus program
  • May be offered an equity award & other types of compensation
  • Eligible for various benefits
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service