CrawlJobs Logo
Uber Logo Uber · IT - Software Development

Senior Staff Security Engineer

United States, New York 267000.00 - 297000.00 USD / Year · Job Posted May 03, 2026
Apply Position
Job Link Share

Job Description

Our mission is to protect, defend, and secure Uber’s products, infrastructure, and data by building highly available, scalable, and extensible security solutions and services. We are focused on proactively identifying and remediating security risks as well as swiftly detecting and mitigating security incidents. In the ever-evolving landscape of cybersecurity, we continuously adapt and evolve our defenses in order to always stay one step ahead of potential threats. We are seeking a talented and experienced Senior Staff Security Engineer to lead our Enterprise Security Team in driving the development of the next-generation endpoint security platform. This platform will be instrumental in enhancing our cyber defense capabilities across security posture management, application management, vulnerability management, and more. The security landscape is constantly evolving, and with the adoption of ML/GenAI backed by extensive heterogeneous data, security threats are inevitably broadened. With your deep and comprehensive expertise across major technology stacks, you will lead major efforts to design, implement, and scale industry-leading security solutions for enterprise security. You are not only a technical role model, but also an empathic leader. You are a humble teacher, technically mentoring passionate engineers while also delivering uniquely challenging projects.

Job Responsibility

  • Define and execute the technical strategy and roadmap for securing the enterprise environment and endpoints
  • Set organizational-level technical direction by identifying priorities and opportunities, managing expectations, and considering tradeoffs
  • Own the platform, architecture, and tools for securing corporate and production endpoints, including macOS, Windows, and Linux
  • Design and build next-generation security platforms and services to automate and scale enterprise security defenses
  • Define and lead the technical strategy for identifying, prioritizing, and remediating security vulnerabilities across all endpoints and applications
  • Champion best software engineering practices and empower engineers to build a strong culture of quality to achieve operational excellence
  • Partner with IT, product, and operations teams to integrate security posture improvements at scale across the entire environment
  • Leverage automation and AI to transform enterprise defense from human-driven to AI-driven

Requirements

  • Bachelor’s Degree or equivalent in Computer Science, Engineering, Mathematics, or a related field
  • 10+ years of full-time work experience in security engineering and/or software engineering
  • Demonstrable technical expertise in managing complex security programs such as Vulnerability Management, Endpoint Security, or Application Security
  • Proficiency in programming languages like Golang, Python, or Java
  • A track record of successful execution in engineering security and/or product development at cloud-scale
  • Master's Degree or PhD in Computer Science, Engineering, Mathematics, or a related field
  • In-depth knowledge of security software frameworks, EDR solutions, and production services on public cloud providers (GCP, OCI, Azure, or AWS)
  • Experience with AI technologies and frameworks and incorporating them into production systems
  • Experience leading complex technical projects across multiple engineering organizations and locations
  • Ability to solve problems and make complex decisions with incomplete information in ambiguous situations

Nice to have

  • Master's Degree or PhD in Computer Science, Engineering, Mathematics, or a related field
  • In-depth knowledge of security software frameworks, EDR solutions, and production services on public cloud providers (GCP, OCI, Azure, or AWS)
  • Experience with AI technologies and frameworks and incorporating them into production systems
  • Experience leading complex technical projects across multiple engineering organizations and locations
  • Ability to solve problems and make complex decisions with incomplete information in ambiguous situations

What we offer

  • Uber's bonus program
  • equity award
  • 401(k) plan
  • various benefits
Uber - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Staff Security Engineer

8 matching positions

Senior Staff Security Engineer – Vulnerability Management

GEICO is seeking a highly experienced Senior Staff Security Engineer to lead the...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle
Salary
Salary:
130000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in cybersecurity or security engineering roles
  • Deep expertise with vulnerability management tools, methodologies, and industry standards
  • Hands‑on experience with modern infrastructure, cloud services (AWS/Azure/GCP), container platforms, and operating systems
  • Proficiency with a modern programming language (Python, Go, Java, etc.) and scripting for automation at scale
  • Strong understanding of security architecture, networking, operating systems, identity, and cloud services
  • Proven ability to lead, mentor, and inspire engineers across multiple teams
  • Strong communication skills with the ability to influence senior stakeholders and translate complex risks into actionable guidance
  • Hands-on experience implementing cybersecurity frameworks e.g. NIST CSF
  • Hands-on experience with leading compliance initiatives to meet e.g. PCI, SOX, NYDFS, etc.
  • Bachelor’s degree in computer science, Cyber Security, or equivalent education with relevant work experience
Job Responsibility
Job Responsibility
  • Lead the full vulnerability lifecycle: discovery, validation, risk analysis, prioritization, and remediation measurement
  • Leverage business contextualization, underlying systems, and threat intelligence to perform risk assessment for identifying true risk to drive remediation
  • Build integrations among scanning tools, asset inventory, CMDBs, ticketing, CI/CD, and monitoring pipelines to streamline workflows
  • Evaluate, test, and implement emerging tools and technologies that advance VM automation and intelligence
  • Design automation to reduce manual work, increase accuracy, and accelerate remediation
  • Generate data‑driven insights that help teams understand, prioritize, and resolve vulnerabilities efficiently
  • Collaborate with cloud, infrastructure, DevOps, and product engineering groups to integrate vulnerability management into pipelines and delivery workflows
  • Work closely with risk, compliance, governance, and incident response teams to ensure alignment with organizational and regulatory standards
  • Communicate vulnerability trends, risk implications, and remediation strategies to technical and non‑technical stakeholders
  • Define KPIs, SLAs, dashboards, and reporting models to drive accountability and measurable vulnerability reduction
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Staff Engineer (Device Security)

At Palo Alto Networks® everything starts and ends with our mission: Being the cy...
Location
Location
United States , Santa Clara
Salary
Salary:
126000.00 - 204500.00 USD / Year
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in Computer Science or similar fields
  • Ph.D. degree is a big plus
  • Strong background in security research combined with hands-on software development experience, particularly in system software development
  • Preference for candidates who understand Windows operating system security and programming
  • Demonstrated understanding and experience with using the latest AI/LLM technology
  • Good knowledge of computer networking in general, and Ethernet and TCP/IP in particular
  • Strong programming skills in languages such as C/C++, Python, Go, or Java
  • Experience in one or more of: Security vulnerability detection and monitoring
  • Malware attack analysis
  • IDS/IPS and application-based firewalls
Job Responsibility
Job Responsibility
  • Research and identify security vulnerabilities and threats across a wide range of devices, Operating Systems and software components
  • Drive innovation by applying the latest AI and LLM technologies to automated threat detection and device discovery
  • Conduct deep analysis of network traffic and device behaviors
  • Design and prototype security research tools and engine components for our cloud-based platforms
  • Collaborate on cross-functional projects to lead and coordinate research efforts
  • Support customer trials and handle complex security-related issues
What we offer
What we offer
  • Restricted stock units
  • Bonus
  • Fulltime
Read More
Arrow Right

Senior Staff Security Software Engineer

As a Senior Staff Security Software Engineer on the Atlas team at Boston Dynamic...
Location
Location
United States , Waltham
Salary
Salary:
151284.00 - 208015.00 USD / Year
bostondynamics.com Logo
Boston Dynamics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s Degree in Computer Science or related field
  • Good knowledge of programming languages, such as C/C++, Go or Rust.
  • 6 or more years of hands-on experience as a product security engineer or architect
  • Good understanding of best practices for OS-level security, such as file system permissions, user/group management, and system services.
  • Experience with authentication and authorization tools and techniques
  • Working understanding of cryptography and cryptography primitives
  • Experience with Linux-native security tools, such as iptables/nftables and eBPF
  • Good understanding of communications protocols such as TCP/IP, and secure networking technologies such as TLS and Wireguard/IPsec
  • Ability to communicate effectively with technical and non-technical audiences, including writing documentation, proposals, specifications, design docs, and threat analyses
  • Eligible to work in the United States
Job Responsibility
Job Responsibility
  • Work with the greater security team to analyze and maintain the Atlas platform security profile
  • Hands-on development of specific security-related features
  • Collaborate with Product Management to understand customer needs and requirements.
  • Analyze security Implications of upcoming features and provide guidance to key stakeholders on risks and possible improvements.
  • Act as a trusted advisor on security topics in both existing and upcoming software for the Atlas platform
  • Conduct tests and technical analysis of the product
  • Educate the broader development community on best practices
What we offer
What we offer
  • medical, dental vision, 401(k), paid time off, annual bonus structure
  • Fulltime
Read More
Arrow Right

Senior Staff Security Infrastructure Engineer

Bloomreach is building the world’s premier agentic platform for personalization....
Location
Location
Czechia , Bratislava; Brno; Prague
Salary
Salary:
Not provided
bloomreach.com Logo
Bloomreach
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of relevant experience
  • proficiency in cloud security, network security, URL filtering, common security frameworks, and CVE lifecycle management
  • practical IaC and scripting for automation
  • strong cross-functional and external communication
  • experience mentoring junior staff
  • hands-on cloud security for AWS and GCP: design secure architectures, perform threat modeling, apply platform-native controls, and build/validate secure IaC
  • SIEM ownership and detection engineering: deploy, configure, tune, and maintain SIEM
  • author and test detection rules and playbooks
  • integrate data sources
  • and operate with SLA-driven alerting and incident workflows
Job Responsibility
Job Responsibility
  • owns current and target-state data architectures and reporting
  • designing, implementing, and monitoring cloud (AWS/GCP) infrastructure security controls
  • deploying, securing, configuring, and operating SIEM and other security resources
  • identifying, triaging, and remediating infrastructure and web vulnerabilities
  • leading incident triage and external-researcher engagement
  • mentoring junior staff
What we offer
What we offer
  • A great deal of freedom and trust
  • flexible working hours
  • virtual-first work with several Bloomreach Hubs
  • company events
  • 5 paid days off to volunteer
  • People Development Program
  • communication coach available
  • Leader Development Program
  • $1,500 professional education budget annually
  • Employee Assistance Program with counselors
  • Fulltime
Read More
Arrow Right

Senior Staff Security Infrastructure Engineer

Bloomreach is building the world’s premier agentic platform for personalization....
Location
Location
Slovakia , Bratislava; Brno; Prague
Salary
Salary:
5000.00 EUR / Month
bloomreach.com Logo
Bloomreach
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of relevant experience
  • proficiency in cloud security, network security, URL filtering, common security frameworks, and CVE lifecycle management
  • practical IaC and scripting for automation
  • strong cross-functional and external communication
  • experience mentoring junior staff
  • Hands-on cloud security for AWS and GCP: design secure architectures, perform threat modeling, apply platform-native controls, and build/validate secure IaC
  • SIEM ownership and detection engineering: deploy, configure, tune, and maintain SIEM
  • author and test detection rules and playbooks
  • integrate data sources
  • and operate with SLA-driven alerting and incident workflows
Job Responsibility
Job Responsibility
  • Owns current and target-state data architectures and reporting
  • designing, implementing, and monitoring cloud (AWS/GCP) infrastructure security controls
  • deploying, securing, configuring, and operating SIEM and other security resources
  • identifying, triaging, and remediating infrastructure and web vulnerabilities
  • leading incident triage and external-researcher engagement
  • and mentoring junior staff
What we offer
What we offer
  • Restricted stock units
  • company performance bonus
  • great deal of freedom and trust
  • flexible working hours
  • work virtual-first
  • company events
  • 5 paid days off to volunteer
  • People Development Program
  • communication coach available
  • Leader Development Program
  • Fulltime
Read More
Arrow Right

Senior Staff Security Software Engineer

As a Senior Staff Security Software Engineer on the Atlas team at Boston Dynamic...
Location
Location
United States , Waltham
Salary
Salary:
151284.00 - 208015.00 USD / Year
bostondynamics.com Logo
Boston Dynamics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s Degree in Computer Science or related field
  • Good knowledge of programming languages, such as C/C++, Go or Rust.
  • 6 or more years of hands-on experience as a product security engineer or architect
  • Good understanding of best practices for OS-level security, such as file system permissions, user/group management, and system services.
  • Experience with authentication and authorization tools and techniques
  • Working understanding of cryptography and cryptography primitives
  • Experience with Linux-native security tools, such as iptables/nftables and eBPF
  • Good understanding of communications protocols such as TCP/IP, and secure networking technologies such as TLS and Wireguard/IPsec
  • Ability to communicate effectively with technical and non-technical audiences, including writing documentation, proposals, specifications, design docs, and threat analyses
  • Eligible to work in the United States.
Job Responsibility
Job Responsibility
  • Work with the greater security team to analyze and maintain the Atlas platform security profile
  • Hands-on development of specific security-related features
  • Collaborate with Product Management to understand customer needs and requirements.
  • Analyze security Implications of upcoming features and provide guidance to key stakeholders on risks and possible improvements.
  • Act as a trusted advisor on security topics in both existing and upcoming software for the Atlas platform
  • Conduct tests and technical analysis of the product
  • Educate the broader development community on best practices.
What we offer
What we offer
  • medical, dental vision, 401(k), paid time off and a annual bonus structure.
  • Fulltime
Read More
Arrow Right

Senior Staff Cloud Security Engineer

GEICO is seeking a Senior Staff Cloud Security Engineer to provide strategic and...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle
Salary
Salary:
130000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep technical expertise in public and private cloud compute infrastructure and cloud native technologies
  • Previous successful projects that iteratively transitioned legacy security models to next generation solutions
  • Deep technical knowledge of security threats, risks, and vulnerabilities within IaaS, PaaS, and SaaS environments and integrations
  • Experience in offensive and defensive security roles, with a strong hacker approach to guiding cloud security decisions
  • Experience communicating and presenting to senior and junior staff with the ability to influence stakeholders
  • Experience in a multi-platform environment with containerized or VM-based Linux and Windows
  • Experience with Container risk monitoring at both build and runtime
  • Experience with solving security control requirements with engineering approaches
  • Ability to excel in a fast-paced, startup-like environment
  • Ability to design, perform experiments, and influence security detection and protection solutions
Job Responsibility
Job Responsibility
  • Provide strategic and technical security direction in designing, implementing, and managing secure cloud infrastructures
  • Develop and maintain expertise in cloud-native security solutions, including container security, Kubernetes, Istio, and cloud networking and security services
  • Define and implement roadmaps for security enhancements, ensuring alignment with business objectives and minimal disruption to operations
  • Develop strong relationships with key stakeholders, including development teams, operations teams, and executive sponsors
  • Collaborate with various teams to design, deploy, troubleshoot, and enhance security measures, while balancing usability and security
  • Influence and educate staff at all levels on cloud security best practices, promoting a culture of cloud security awareness across the organization
  • Proactively identify opportunities to enhance security measures, streamline processes, and optimize tooling, leveraging an offensive security mindset
  • Support continuous improvement of our cloud security posture through innovative solutions
  • Mentor/train growing security engineers and provide technical direction and project leadership
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Security Operations

The senior security engineer role provides a unique opportunity to shape the sec...
Location
Location
United States , REMOTE; SAN FRANCISCO; ROSEVILLE; LEHI; WEST PALM BEACH; IRVINE
Salary
Salary:
146000.00 - 170000.00 USD / Year
goodleap.com Logo
GoodLeap
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences
  • Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations
  • Experience with threat modeling methodologies
  • Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR
  • Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus)
  • Proven ability to establish credibility and build trust with business, engineers, and operational staff
  • Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce
  • Experience working with and creating solutions based AI and ML toolsets – e.g., creation of AI skills, agents, MCP clients, vibe coding
  • Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases
  • Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK
Job Responsibility
Job Responsibility
  • Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios
  • Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios
  • Support or develop components of the security analytics platform
  • Support embedded (product) security team
  • Support general security operations team with vulnerability management, tools management, and more
What we offer
What we offer
  • bonus
  • equity
  • Fulltime
Read More
Arrow Right