Enterprise Security TPM - Aurora Innovation Pittsburgh, Pennsylvania, United States Bookmark Share Print 249 0 0

Listing Description

Bringing self-driving vehicles to our roads is the most transformative opportunity of our generation. Aurora is taking a fresh start with the development of self-driving technology, combining excellence in AI, rigorous engineering, and a team with decades of experience building robots that work.


Led by a team of seasoned experts, our mission is to deliver the benefits of self-driving technology safely, quickly, and broadly. We are designing the software and hardware to power the transportation of our future that will make our roads safer, give more people access to mobility, and reduce congestion and pollution in cities - improving the quality of life for all. The challenge in what we are endeavoring to achieve is transcendent; we are developing perhaps the world's most complex computing system and asking it to perform the task of transporting and keeping safe our most precious asset: human life.


Aurora hires people who are excited to build the future of transportation.


 


This role sits within the Security Strategy and Programs team. Aurora’s Security Strategy and Programs team’s mission is to develop security strategy and drive security initiatives across all of Aurora. We are searching for a seasoned security professional with expertise in driving company wide technical programs to join us on this mission.


This role specifically is responsible for driving enterprise IT infrastructure security initiatives and programs. This role will function as the bridge between Security, IT Engineering, IT Operations, Developer Operations, Aurora Trucking Operations (Service Delivery) teams to drive adoption and implementation of security controls as needed for different product release milestones.


This role moves effortlessly from high level strategy into tangible action plan adjusted for different stakeholders so that they can execute towards a complex and cross-functional goal. This role will bring in the right set of people as needed to bring specificity and clarity for timely execution of large scale cross-team initiatives. The role will thrive in a dynamic work environment, and is able to prioritize multiple parallel efforts. The role will proactively make efforts to break through communication barriers and develop strong relationships with stakeholders at all levels of the organization.


Job level is negotiable based on experience. Flexible work locations are available (MTV, SFO, PIT, SEA) for US-based employees (Full remote is not available for this role).


In this role, you will 



  • Establish Security Initiatives and Programs

  • Drive Security Program Execution and Risks Resolution

  • Manage Stakeholders and Communications


Required Qualifications 



  • Minimum 7+ years of experience in the capacity of a Technical Program Manager, Product Manager, Engineering Manager or Security Engineer in domains of Security, Compliance or IT.

  • BS in Computer Science, Information Technology or a technical field or equivalent experience

  • Hands-on experience in driving security programs such as identity & access management, detection & response, threat intel, vulnerability management, endpoint/device security, network security or 3rd party risk management.

  • Experience with driving implementation of security standards such ISO 27001, SOC2, NIST 800-171, NIST 800-53 or NIST 800-37.

  • Ability to influence and motivate people across a broad variety of job functions through your relationships.

  • Experience with planning and driving organization wide multi-year engineering initiatives.

  • Experience with driving and managing company wide disruptive changes.

  • Excellent written and verbal communication skills.

  • Experience with creating detailed reporting and dashboards

  • Strong technical, analytical and quantitative skills with the ability to use data and metrics to back up assumptions, recommendations and drive decisions.


Desirable Qualifications 



  • Professional certifications such as CISSP, CISM, CISA, CCSK, GIAC, Prosci, SAFe, CSM or PMP.

  • Experience with developing threat models and using threat models to develop security controls and initiatives.

  • Experience as an internal security consultant/advisor.

  • Familiarity with Zero Trust Architecture principles.

  • Experience implementing cloud security controls.

  • Experience with setting organization wide security programs (e.g. security detection and response, vulnerability management, threat intel) from ground-up. 

  • Ability to work within organizations with minimal structure and with minimal direction.

  • Experience with creating communication plans


The base salary range for this position is $196K-$294K per year. Aurora’s pay ranges are determined by role, level, and location. Within the range, the successful candidate’s starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits. 


 #LI-AP2


#Mid-Senior

Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided

About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Useful Links

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765

requests@ninjajobs.org
www.ninjajobs.org
Chat with us!