This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Aurora’s mission is to deliver the benefits of self-driving technology safely, quickly, and broadly. The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone. At Aurora, you will tackle massively complex problems alongside other passionate, intelligent individuals, growing as an expert while expanding your knowledge. For the latest news from Aurora, visit aurora.tech or follow us on LinkedIn. Aurora hires talented people with diverse backgrounds who are ready to help build a transportation ecosystem that will make our roads safer, get crucial goods where they need to go, and make mobility more efficient and accessible for all. We’re searching for a Staff Security Engineer, Enterprise Security Architecture. This position is open to the following office locations: Mountain View, San Francisco, Seattle, Pittsburgh, Dallas, Detroit, and Phoenix.
Job Responsibility
Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target-state operating model across enterprise and backend operational security domains
Develop enterprise security reference architectures, design patterns, and technical standards for endpoint security, network security, infrastructure security, enterprise vulnerability management, data protection, resilience, enterprise platforms, and security tooling
Translate security strategy, governance requirements, and business priorities into scalable technical architecture and implementation guidance
Partner with GRC to operationalize security policies, standards, and control objectives into practical enterprise security architectures
Support and influence Aurora’s broader Enterprise Architecture Committee by representing enterprise security priorities, technical standards, and strategic design principles
Participate in architecture review boards, design committees, and strategic planning forums to ensure enterprise security alignment across major initiatives
Architect secure solutions for workforce platforms, enterprise systems, internal infrastructure, and backend operational ecosystems using Zero Trust principles and modern security frameworks
Guide enterprise security design for endpoint security, network security, PKI, enterprise vulnerability management, BCP/DR, data security, enterprise infrastructure, and security tooling modernization
Provide architectural oversight for major enterprise security initiatives, ensuring scalability, interoperability, governance alignment, and reduced fragmentation
Partner with Security Engineering, GRC, Cloud Security, IT, Product Security, and IAM teams to align technical security capabilities while maintaining clear domain boundaries
Identify architectural gaps, capability overlaps, and opportunities to streamline enterprise security investments
Help shape long-term strategy for enterprise security capabilities, including emerging needs related to AI security, automation, infrastructure modernization, and operational resilience
Support security tooling strategy by evaluating architectural fit, integration models, and long-term scalability of enterprise security platforms
Establish and maintain enterprise security design documentation, architecture diagrams, reference standards, and technical governance artifacts
Guide enterprise security maturity by aligning architecture to frameworks such as Zero Trust, NIST CSF, ISO 27001, SOX, SOC 2, and broader operational resilience objectives
Serve as a strategic advisor to Enterprise Security leadership on architecture, maturity, organizational scaling, and strategic technical investments
Support Enterprise Security leadership with strategic technical narratives that improve executive and business understanding of enterprise security investments
Requirements
10+ years of professional experience in Information Security, Enterprise Architecture, Security Engineering, or related technical leadership capacities
5+ years specifically focused on designing enterprise-scale security architectures across diverse domains, including endpoint, network, infrastructure, vulnerability management, resilience, and enterprise platforms
Demonstrated success in developing enterprise security architecture strategies, reference architectures, and scalable technical standards
Extensive technical depth in Zero Trust principles, enterprise security frameworks, and modern backend or enterprise security architecture design patterns
Comprehensive knowledge of core enterprise security domains, including endpoint security, network security, PKI, enterprise vulnerability management, resilience, data protection, and governance integration
Proven ability to translate governance, compliance, and strategic business requirements into actionable technical architecture and implementation guidance
Experience representing security interests within architecture review boards, governance committees, or enterprise-wide design councils
Advanced familiarity with enterprise infrastructure, SaaS ecosystems, internal platforms, and the strategic integration of security tooling
Adept at evaluating technical tradeoffs, identifying scalability constraints, and assessing the long-term implications of enterprise security architecture decisions
Exceptional documentation skills, including the creation of detailed architecture diagrams, technical standards, and strategic narratives for executive leadership
Proven capacity to influence technical and business stakeholders across multifaceted cross-functional teams
Strong strategic mindset, complex problem-solving abilities, and a track record of organizational leadership
Nice to have
Direct experience in the automotive industry
Knowledge of enterprise architecture committee structures and multifaceted cross-functional governance models
Expert-level knowledge on AI security, security automation, or enterprise-scale modernization initiatives
Relevant security and architecture certifications (such as CISSP, SABSA, TOGAF, or equivalent)