Uber
Join to apply for the
Sr. Staff Security Engineer
role at
Uber .
About The Team The security organization at Uber is dedicated to enabling safe and secure innovation while protecting the communities we serve both online and in the physical world. Our team is responsible for protecting both people and their data across intersections of the digital and physical world. The primary objective for Uber's Engineering Security team is to enable the technical ambitions of the company while maintaining the highest standards of security and privacy for our customers and partners.
About The Role Our mission is to protect, defend, and secure Uber’s products, infrastructure and data by building highly available, scalable and extensible security solutions and services. We are focused on proactively identifying and remediating security risks as well as swiftly detecting and mitigating security incidents. In the ever‑evolving landscape of cybersecurity, we continuously adapt and evolve our defenses to stay one step ahead of potential threats. We are seeking a talented and experienced Sr. Staff Security Engineer to lead the development of the next generation security platform.
Job Duties
Lead the technical direction and architecture of our cybersecurity defense capabilities, including areas such as enterprise security posture management, threat detection and response, and vulnerability management.
Design and implement robust and scalable security solutions leveraging diverse technologies (e.g., SIEM, EDR, SOAR, cloud security platforms, IAM).
Lead incident response efforts, including investigation, containment, and recovery activities; perform post‑incident analysis and recommend improvements.
Proactively research and evaluate emerging security threats, technologies, and trends, and provide recommendations for their adoption to enhance our security posture.
Collaborate effectively with cross‑functional teams (Engineering, IT, Legal, Compliance) to integrate security considerations into the development lifecycle and business processes.
Mentor and provide technical guidance to junior security engineers, fostering continuous learning within the team.
Contribute to the development and automation of security tools and processes to improve efficiency and effectiveness.
Communicate complex security concepts and risks effectively to both technical and non‑technical audiences.
Participate in security audits and compliance initiatives, providing technical expertise and ensuring adherence to security standards.
Minimum Qualifications
Bachelor’s Degree or equivalent in Computer Science, Engineering, Information Security or related field.
10+ years full‑time experience in security engineering, focusing on security defense and incident response.
Deep technical expertise in network security, endpoint security, cloud security (GCP, OCI, Azure, AWS), and identity and access management.
Strong scripting and automation skills (Python, PowerShell, Bash, Golang) highly desired.
Proven experience designing, implementing, and managing complex security solutions at an enterprise level.
Excellent analytical and problem‑solving skills with ability to diagnose and resolve complex security issues.
A proactive, results‑oriented mindset and passion for staying ahead of the threat landscape.
Experience leading technical security projects and mentoring other engineers.
Excellent communication, collaboration, and interpersonal skills, effectively conveying technical information to diverse audiences.
Preferred Qualifications
Master’s Degree or PhD in Computer Science, Engineering, Information Security or related field.
Proficiency in security tools and technologies, including SIEM (Splunk, Chronicle), EDR (CrowdStrike, SentinelOne), vulnerability scanners (Qualys, Nessus), and penetration testing tools.
Strong understanding of security frameworks and standards (NIST CSF, ISO 27001, SOC 2).
Familiarity with production services on public cloud providers (GCP, OCI, Azure, AWS).
Experience with AI technologies and frameworks, incorporating them into production systems.
Experience leading complex projects across multiple engineering organizations.
EEO and Benefits Uber is proud to be an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you have a disability or special need that requires accommodation, please let us know by completing this form.
Salary and Benefits Salary for this role varies by location: USD$265,000–USD$294,000 per year, plus bonus and equity. All US locations are eligible to participate in Uber’s bonus program and may receive equity awards and other compensation. More details at https://www.uber.com/careers/benefits.
#J-18808-Ljbffr
Sr. Staff Security Engineer
role at
Uber .
About The Team The security organization at Uber is dedicated to enabling safe and secure innovation while protecting the communities we serve both online and in the physical world. Our team is responsible for protecting both people and their data across intersections of the digital and physical world. The primary objective for Uber's Engineering Security team is to enable the technical ambitions of the company while maintaining the highest standards of security and privacy for our customers and partners.
About The Role Our mission is to protect, defend, and secure Uber’s products, infrastructure and data by building highly available, scalable and extensible security solutions and services. We are focused on proactively identifying and remediating security risks as well as swiftly detecting and mitigating security incidents. In the ever‑evolving landscape of cybersecurity, we continuously adapt and evolve our defenses to stay one step ahead of potential threats. We are seeking a talented and experienced Sr. Staff Security Engineer to lead the development of the next generation security platform.
Job Duties
Lead the technical direction and architecture of our cybersecurity defense capabilities, including areas such as enterprise security posture management, threat detection and response, and vulnerability management.
Design and implement robust and scalable security solutions leveraging diverse technologies (e.g., SIEM, EDR, SOAR, cloud security platforms, IAM).
Lead incident response efforts, including investigation, containment, and recovery activities; perform post‑incident analysis and recommend improvements.
Proactively research and evaluate emerging security threats, technologies, and trends, and provide recommendations for their adoption to enhance our security posture.
Collaborate effectively with cross‑functional teams (Engineering, IT, Legal, Compliance) to integrate security considerations into the development lifecycle and business processes.
Mentor and provide technical guidance to junior security engineers, fostering continuous learning within the team.
Contribute to the development and automation of security tools and processes to improve efficiency and effectiveness.
Communicate complex security concepts and risks effectively to both technical and non‑technical audiences.
Participate in security audits and compliance initiatives, providing technical expertise and ensuring adherence to security standards.
Minimum Qualifications
Bachelor’s Degree or equivalent in Computer Science, Engineering, Information Security or related field.
10+ years full‑time experience in security engineering, focusing on security defense and incident response.
Deep technical expertise in network security, endpoint security, cloud security (GCP, OCI, Azure, AWS), and identity and access management.
Strong scripting and automation skills (Python, PowerShell, Bash, Golang) highly desired.
Proven experience designing, implementing, and managing complex security solutions at an enterprise level.
Excellent analytical and problem‑solving skills with ability to diagnose and resolve complex security issues.
A proactive, results‑oriented mindset and passion for staying ahead of the threat landscape.
Experience leading technical security projects and mentoring other engineers.
Excellent communication, collaboration, and interpersonal skills, effectively conveying technical information to diverse audiences.
Preferred Qualifications
Master’s Degree or PhD in Computer Science, Engineering, Information Security or related field.
Proficiency in security tools and technologies, including SIEM (Splunk, Chronicle), EDR (CrowdStrike, SentinelOne), vulnerability scanners (Qualys, Nessus), and penetration testing tools.
Strong understanding of security frameworks and standards (NIST CSF, ISO 27001, SOC 2).
Familiarity with production services on public cloud providers (GCP, OCI, Azure, AWS).
Experience with AI technologies and frameworks, incorporating them into production systems.
Experience leading complex projects across multiple engineering organizations.
EEO and Benefits Uber is proud to be an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you have a disability or special need that requires accommodation, please let us know by completing this form.
Salary and Benefits Salary for this role varies by location: USD$265,000–USD$294,000 per year, plus bonus and equity. All US locations are eligible to participate in Uber’s bonus program and may receive equity awards and other compensation. More details at https://www.uber.com/careers/benefits.
#J-18808-Ljbffr