About the Role

We are seeking a highly skilled Senior Staff Cloud Native Security Engineer to join our cutting-edge technology team.

In this role, you will be a thought leader responsible for designing, implementing, and optimizing multi-tenanted zero-trust identity security models within cloud-native architectures. You will work across teams to establish robust security design patterns to ensure compliance with industry best practices while protecting sensitive data. You will be influential to shape Uber engineering to adopt 'shifting-left' security principals, leading to an overall proactive cybersecurity maturity.

---- What the Candidate Will Do ----

1. Cloud IAM Strategy: Define and drive the strategy for securing cloud environments (GCP, OCI as predominant cloud, plus AWS and Azure) leveraging modern identity tools and techniques through well-defined federation strategies.
2. Policy Enforcement: Build and manage security policies, including identity and access management (IAM), network segmentation, and endpoint protections in a zero-trust model.
3. Zero-Trust Architecture Development: Design and implement scalable zero-trust frameworks for cloud-native applications, ensuring secure access and communication across microservices.
4. Engineering excellence: Develop automated security validation pipelines using Infrastructure-as-Code (IaC) tools (e.g., Terraform, Kubernetes). Be intentional about automation, reliability and scalability.
5. Collaboration and Mentorship: Act as a technical leader, mentoring engineers and collaborating with DevOps, infrastructure, and application teams to align IAM security strategies.

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
• 10+ years of experience in software engineering, with a focus on cloud-native systems and identity security.
• Proven expertise in zero-trust security models and architectures.
• Skilled in multi-cloud and hybrid SaaS ecosystem
• Understanding of Kubernetes, container runtime; versatile in cloud native security technologie
• Domain Expertise in cloud-native security tools (e.g.,Istio, Linkerd, Calico, OPA).
• Domain knowledge of identity IDP, federation, SSO, FIDO2, MFA, and PKI, Cloud IAM
• Proficiency with scripting and automation (Python, Go) and DevSecOps practices.
• Familiarity with SIEM, EDR, and logging solutions such as Splunk or Elastic Stack.
• Leadership and ability to influence cross-functional teams.
• Strong analytical and problem-solving skills; data-driven approaches
• Excellent written and verbal communication.

1. Threat Modeling & Risk Management: Perform threat modeling, vulnerability assessments, and familiarity with risk analysis for complex cloud-native systems.
2. Threat detection and incident response: familiar with security incidents, ability to develop proactive strategies to mitigate risks through close collaboration with cyber defense teams.
3. Compliance & Standards: Ensure adherence to regulatory compliance frameworks such as GDPR, HIPAA, SOC 2, and NIST 800-207.