Canoo Technologies Inc.

Director, Security Operations

Full Time
Location : Location

About Canoo

About Canoo

 Canoo’s mission is to bring EVs to Everyone and build a world-class team to deploy this sustainable mobility revolution. We have developed breakthrough electric vehicles that are reinventing the automotive landscape with pioneering technologies, award-winning designs, and a unique business model that spans all owners in the full lifecycle of the vehicle. Canoo is starting production in 2022 and is distinguished by its pioneering and experienced team of technologists, engineers, and designers. With offices around the country, the company is scaling quickly and seeking candidates who love to challenge themselves, are motivated by purpose, and possess a strong desire to get things done.


The “Canoo Way”

 Canoo’s success is the direct result of our disciplined application of our core operating principles and drills, which are based on three main principles: Think 80/20 (“Important versus less important”), Act 30/30 (“Reduce waste and increase output”), and Live 90/10 (“We have each other’s back”). We hire based on “MET” - Mindset, Equipment and willingness to Train - and seek individuals that take accountability and deliver results while being Humble, Hungry to succeed, and Hunting for opportunities to win. We train our team to engage with each other by modulating between their intellect (iQ) and emotional intelligence (eQ), applying Facts, Finesse, and Force when they communicate. The principles and drills of the CANOO Way have been fundamental to our success, our ability to grow, continuously improve, innovate and are at the core of our day-to-day operations.


We have several roles within our Cyber Security Incident Response Team (IRT).  These roles will be an integral member of the Cyber Security leadership team focused on Canoo’s overall Cloud Security posture, including Security Information and Event Management (SIEM) operations, Digital Forensics, Threat Intelligence, and Vulnerability Management.  


IRT roles include responsibility for technical design, implementation, and operations of security solutions/systems, creating and maintaining accurate technical documentation, and communications. This team will cover cloud environments, enterprise/corporate, manufacturing/plants, and connected vehicles.

If you have passion for cutting edge cloud services, deep interest in cybersecurity architecture and information security technologies, can convert complex requirements into efficient designs, and enjoy working in a fast-paced environment with talented engineers then Canoo is for you.


The ideal candidate must have hands-on experience with:

  • Monitor the organization's cloud environments, networks, and systems to spot and prevent intrusions and anomalies
  • Thoroughly examine and define all security flaws and holes in an organization's computer systems and networks
  • Use computer forensic tools to examine and analyze assets per suspicious security events
  • Conduct security audits on the systems, including performing penetration testing tasks, network forensics and risk assessment and analysis
  • Conduct tasks related to malware analysis and reverse engineering
  • Continuously improve and update formal Incident Response Plan (IRP), to ensure accuracy and facilitate tabletop exercises on a reoccurring basis
  • Define protocols for communication with the organization and with law enforcement should a security incident occur
  • Explain in detailed technical reports what occurred when an incident happens, including the reasons why this occurred and your response
  • Document all findings in an easy-to-read format
  • Build relations with other entities responsible for conducting cyber threat analyses



  • Coding ability using C, C++, C#, Python, or Java
  • AWS hands-on experience
  • Hands-on experience with cloud security forensics and analysis of security threats and events and ability to perform penetration testing in the cloud
  • Hands-on experience with endpoint (e.g., laptop) and server security forensics and analysis of security threats and events
  • Hands-on experience analyzing security alerts from onprem sources (e.g., firewalls)
  • Hands-on experience with EDR tools as part of the IR lifecycle process
  • Hands-on experience with Endpoint Management solutions (e.g., SCCM, JAMF, Intune, etc.) as part of an IRT playbook and process
  • Experience with forensic software applications like FTK, EnCase, XRY, Cellebrite
  • Experience with Enterprise system monitoring tools
  • Hands-on experience with ELK, Sentinel, Security Hub, Splunk and other SIEM technologies
  • Hands-on UNIX scripting experience
  • Hands-on experience security web services, including API’s
  • Advance knowledge of security principles like confidentiality, authentication, access control and privacy, security vulnerabilities, physical security issues, protocol design flaws, malicious code, implementation flaws, and configuration weaknesses
  • Ability to work on multiple projects at a time in a fast-paced environment
  • Excellent communication skills


  • Hands-on experience with Docker, GitHub/Gitlab, Jenkins, Terraform and deploying solutions on AWS.

What's Cool About Working Here...

  • Meaningful, challenging work that will redefine automotive landscape and make EVs available to everyone
  • Comprehensive Health Insurance
  • Equity Compensation
  • Flexible Paid Time Off
  • Casual workplace with an unbelievable feeling of energy

Canoo is an equal opportunity-affirmative action employer and considers all qualified applicants for employment based on business needs, job requirements and individual qualifications, without regard to race, color, religion, sex, age, disability, sexual orientation, gender identity or expression, marital status, past or present military service or any other status protected by the laws or regulations in the locations where we operate. We also consider qualified applicants with criminal histories consistent with applicable federal, state and local law.


Any unsolicited resumes or candidate profiles submitted in response to our job posting shall be considered the property of Canoo Inc. and its subsidiaries and are not subject to payment of referral or placement fees if any such candidate is later hired by Canoo unless you have a signed written agreement in place with us which covers the applicable job posting. 


Canoo cares deeply about the safety of all candidates who may be asked to participate in an in-person interview. While the company remains operational, some of our positions are remote, while others require working on-site. Canoo is following the Covid-19 protocols set forth by local state and federal governance and the CDC guidelines. Candidates who are vaccinated will be asked to provide a copy of proof of vaccination upon arrival for the interview. Candidates who are not vaccinated will be asked to provide proof of a negative Covid-19 test that is no less than 48 hours old. We ask that you practice hand hygiene, social distance, and wear face coverings to reduce the risks of exposure to Covid-19. We appreciate your cooperation with our safety protocols while you explore your future with Canoo!


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed