Senior Software Engineer - AWS Security

Zoox is looking for an AWS Security Engineer to lead the design and implementation of secure, scalable, and software-defined infrastructure in our AWS cloud environment. This role is responsible for establishing best-in-class security practices across AWS, driving automation-first infrastructure security, and partnering with engineering and platform teams to embed security into every layer of our technology stack.

You’ll act as a security champion, ensuring that infrastructure designs meet the highest standards of confidentiality, integrity, and availability — while maintaining operational efficiency and scalability through Infrastructure as Code (IaC).

In this role, you will:

• Lead the architecture of secure, resilient AWS environments following AWS best practices.
• Architect and enforce enterprise IAM strategies including roles, permissions boundaries, and identity federation.
• Design and implement secure VPC topologies, private connectivity, and hybrid network patterns (Transit Gateway, PrivateLink, etc.).
• Establish continuous auditability of cloud assets and configuration states using AWS Config, CloudTrail, and Security Hub.
• Implement secure infrastructure using Terraform, AWS CDK, or CloudFormation.

Qualifications:

• 8+ years of hands-on experience in cloud or infrastructure security, with at least 5 years focused on AWS.
• Deep technical expertise in IAM, network security, and AWS services (VPC, ECS/EKS, EC2, S3, CloudTrail, KMS, etc.).
• Strong proficiency with Infrastructure as Code (Terraform preferred).
• Strong understanding of encryption, key management, and secure connectivity.
• Programming/scripting skills (Python, Go, or similar) for automation and integration.

Bonus Qualifications

• Experience implementing automated compliance and audit frameworks (CIS, SOC2, ISO 27001).
• Experience with container and workload security (EKS, ECS, Kubernetes).
• AWS Certified Security – Specialty or AWS Solutions Architect – Professional.