Security Engineer II - Security Design
Description For Security Engineer II - Security Design
Uber's Product Security organization is seeking a Security Engineer II to join their Security Design team. This role focuses on providing security guidance for Uber's products and services as part of their secure software development lifecycle. The position involves conducting pre-release technical security system design reviews, analyzing engineering design documents, and identifying potential security design flaws across cloud, infrastructure, data, and applications security domains.
The ideal candidate will work at the intersection of security and product development, helping to "shift security left" in the development process. They will be responsible for performing security design reviews, threat modeling, and providing technical guidance to engineering teams throughout the company. This role offers an opportunity to make strategic impacts on the security of Uber's next-generation systems and services.
Key responsibilities include conducting multi-disciplinary security design reviews, creating technical documentation, serving as a security subject matter expert, and coordinating with various teams for remediation efforts. The role requires a strong background in security engineering or architecture, with experience in cloud-native services and modern development practices.
The position offers the opportunity to work with cutting-edge technologies and contribute to the security of a global technology platform. Candidates should have strong technical abilities, excellent communication skills, and experience with various programming languages and database technologies. The role is hybrid, requiring at least 50% time in the office, and offers the chance to work with a collaborative team focused on moving the world forward through secure technology solutions.
Responsibilities For Security Engineer II - Security Design
- Perform multi-disciplinary security design reviews of engineering design proposals
- Draw design inferences on product designs considering security trade-offs
- Create quality written work products for technical and non-technical consumers
- Serve as subject matter expert in secure application and systems design
- Conduct security assessments including architectural review and threat modeling
- Provide technical guidance for remediation efforts
- Coordinate with AppSec and assessment teams
Requirements For Security Engineer II - Security Design
- Bachelor's in Computer Science, Engineering or related field or equivalent work experience
- 3+ years of relevant engineering or security engineering or security architectural experience
- Security-related or architect-related certification (CISSP, OSCP, CEH, Cloud Security Certifications)
- Broad knowledge of threat modeling and security design patterns
- Experience with Cloud-native services, service and microservices meshes
- Familiarity with industry-standard risk modeling and vulnerability classification
- Ability to create written work products and detailed technical documents
- Problem-solving skills and ability to learn new technologies
Jobs Related To Uber Security Engineer II - Security Design
