🛠 Tech Stack

💼 About This Role

You'll own the operational health and tuning of Aurora's enterprise security platform stack, ensuring tools like EDR, SIEM, and IAM deliver reliable signal. Your core impact is reducing noise while maximizing coverage against real threats. This role is for an elite security operator who finds satisfaction in mastering tools and hunting threats.

🎯 What You'll Do

• Own health, configuration, and improvement of security platform stack.
• Develop detection rules, correlation logic, and alert policies.
• Conduct proactive threat hunting across security telemetry.
• Serve as internal expert and escalation point for complex issues.
• Participate in on-call rotation for incident investigations.

📋 Requirements

• 12+ years of hands-on experience in enterprise security operations or SOC engineering.
• Expert-level proficiency in at least two enterprise security platforms (e.g., CrowdStrike, Splunk).
• Demonstrated ability to tune and optimize security platforms beyond default configurations.
• Strong log analysis and threat hunting skills with hypothesis-driven approach.
• Experience conducting thorough incident investigations and communicating findings.

✨ Nice to Have

• Scripting ability in Python or Bash for automation.
• Deep familiarity with MITRE ATT&CK for detection gap analysis.
• Experience with AWS security telemetry (CloudTrail, GuardDuty, Security Hub).
• Zero Trust and identity-centric security model familiarity.

🎁 Benefits & Perks

• 💰 Annual bonus and equity compensation.
• 🏖️ Comprehensive benefits package.
• 📈 Professional growth opportunities in autonomous vehicle industry.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager· 45 min
4. 4Final Round· 60 min