Staff Platform Security Engineer

At Serve Robotics, we’re reimagining how things move in cities. Our personable sidewalk robot is our vision for the future. It’s designed to take deliveries away from congested streets, make deliveries available to more people, and benefit local businesses. The Serve fleet has been delighting merchants, customers, and pedestrians along the way in Los Angeles while doing commercial deliveries.

The Serve fleet has been delighting merchants, customers, and pedestrians along the way in Los Angeles while doing commercial deliveries. We’re looking for talented individuals who will grow robotic deliveries from surprising novelty to efficient ubiquity.

Who We Are

We are tech industry veterans in software, hardware, and design who are pooling our skills to build the future we want to live in. We are solving real-world problems leveraging robotics, machine learning and computer vision, among other disciplines, with a mindful eye towards the end-to-end user experience. Our team is agile, diverse, and driven. We believe that the best way to solve complicated dynamic problems is collaboratively and respectfully.

What you’ll be doing

As a Staff Platform Security Engineer you will help build a culture of continuous improvement, raising awareness and understanding of important security practices and considerations throughout Serve. 

Responsibilities

• Lead technical security requirements for Serve’s production cloud infrastructure.

• Lead threat modeling to define an approach to operationalizing and automating security throughout the system and software development lifecycle.

• Develop and implement runtime security measures for container environments.

• Define hardening and continuous assessment criteria for Serve’s infrastructure stack. 

• Design security tooling to identify system/software vulnerabilities and common misconfigurations. 

• Assist the team in developing a library of automated checks and integrations to inspect machine and container image configurations, IAM and Storage policies, Firewall configurations etc.

• Support internal and third-party security penetration testing as Platform Security SME. 

• Participate in the Security team on-call rotation. 

Qualifications

• 6+ years of experience as a security engineer or a mix of security engineering, software development and operations in a lead or staff role. 

• Bachelor's degree in Computer Science, Information Systems or related field or equivalent hands on technical work experience. 

• Deep expertise in Cloud Computing, Linux and network security. (experience with Kubernetes is a plus)

• Strong knowledge of networking and internet protocols (TCP/IP, DNS, SMTP, HTTP etc.)

• Strong knowledge of secure authentication protocols (OAuth, SAML 2.0) and cryptographic key management.

• Some scripting & programming experience required for security automation (Python, bash)

• Familiar with the following programming languages are a bonus (C, C++, JavaScript)

• Strong experience with security tools and services within AWS and GCP.

• The following certifications are desirable but not required: Google Cloud Security Professional, AWS Cloud Security Practitioner, CISSP.

• Deep understanding of Security in the Software Development Life Cycle.

• Familiar with security frameworks and standards. (ISO27001, NIST CSF)

Which soft skills matter for this role?

• Excellent time-management, Interpersonal and communication skills.

• Critical thinking and problem-solving skills
  Working with a sense of urgency, ownership and pride in your performance and its impact on the company’s success.