Canoo’s mission is to bring EVs to Everyone and build a world-class team to deploy this sustainable mobility revolution. We have developed breakthrough electric vehicles that are reinventing the automotive landscape with pioneering technologies, award-winning designs, and a unique business model that spans all owners in the full lifecycle of the vehicle. Canoo is starting production and is distinguished by its pioneering and experienced team of technologists, engineers, and designers. With offices around the country, the company is scaling quickly and seeking candidates who love to challenge themselves, are motivated by purpose, and possess a strong desire to get things done.

The “Canoo Way”

Canoo’s success is the direct result of our disciplined application of our core operating principles and drills, which are based on three main principles: Think 80/20 (“Important versus less important”), Act 30/30 (“Reduce waste and increase output”), and Live 90/10 (“We have each other’s back”). We hire based on “MET” - Mindset, Equipment and willingness to Train - and seek individuals that take accountability and deliver results while being Humble, Hungry to succeed, and Hunting for opportunities to win. We train our team to engage with each other by modulating between their intellect (iQ) and emotional intelligence (eQ), applying Facts, Finesse, and Force when they communicate. The principles and drills of the CANOO Way have been fundamental to our success, our ability to grow, continuously improve, innovate and are at the core of our day-to-day operations.

The Principal Engineer, Cloud Security will be an integral member of the Information Technology (IT) team focused on Canoo’s overall Cloud Security posture, DevSecOps, Enterprise Identity and Access Management (IAM), detailed technical standards and playbooks, and implementing tools to improve the security of cloud workloads. The Principal Engineer, Cloud Security will architect and manage the secure operation of the Canoo’s cloud based technical infrastructure. This role includes responsibility for technical security implementation, administration of security systems, creating and maintaining accurate technical documentation and playing a pivotal role in ensuring security of Canoo assets in the Cloud. If you have passion for cutting edge cloud services, deep interest in cybersecurity architecture and information security technologies, can convert complex requirements into efficient designs, and enjoy working in a fast-paced environment with talented engineers then Canoo is for you. 

• Actively develop and improve existing solutions for securing and monitoring all AWS cloud environments.
• Using AWS native services to ensure that security guardrails are in place for application teams to use AWS services securely.
• Define standards and develop reusable templates for the application teams to use.
• Review the design as part of “Shift Left” approach. Be a ready, willing and proactive partner with other teams to achieve secure and agile development.
• Work collaboratively with DevOps teams to define standards for Secure Development pipelines.
• Work collaboratively with infrastructure and SRE teams to define and formalize detailed cloud security technical standards and guidelines.
• Develop and deploy compliance checking capabilities to continuously identify DevOps and Infrastructure/SRE teams not leveraging Cyber Security components and patterns or complying with Cyber Security technical standards and guidelines.
• Collect and report on Cyber Security operational metrics for Software Engineering DevOps teams
• Research Cyber Security trends and emerging technologies, identify our business and technical requirements, perform technical evaluation and support deployment of Cyber Security solutions
• Develop and implement Cyber Security solutions u­sing IaC, automation scripts and supporting tools that streamline routine security processes, maintain Cyber Security repos, documentation, and Cloud Cyber Security accounts

#LI-SK1

Required 

• BS degree in Computer Science / Engineering or a related field, or equivalent experience
• Reviews architectural diagrams for proposed solutions and implements the standard cloud or on prem services based on compute, data, or security requirements.
• Manages the configuration and deployment of cloud services such as EC2, VPC, S3, ECS, RDS, Lambda, Virtual Machines, Storage Accounts, SCP, Resource Groups.
• Expertise in cloud native security tools such as Trusted Advisor, Config, Cloud Watch, IAM, Organizations, Inspector, Security Hub, Monitor, Advisor, and Log Analytics.
• Utilize continuous integration and automation tools such as GIT, Jenkins, Ansible, PowerShell, Hashicorp Terraform.
• Develop scripts for automating client/server functions.
• 3-5+ years of hands-on experience building, maintaining, and securing AWS environments (e.g., VPC's, EC2, EKS, serverless, IAM/Network policies, AWS Access Management, SCPs, etc.)
• AWS incident triage/containment
• Hands-on experience with Docker, K8s, Modern CI/CD tooling, ELK and deploying applications to AWS
• Critical thinking skills and curiosity

Preferred 

• AWS Certifications

Physical Requirements for Non-Physical Positions

• While performing the duties of this job, employees may be required to sit for prolonged periods of time, occasionally bending or stooping, lifting up to 10 pounds, and prolonged periods of computer use.

Reasonable Accommodations

• Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the position.

• Meaningful, challenging work that will redefine the automotive landscape and make EVs available to everyone
• Comprehensive Health Insurance
• Equity Compensation
• Flexible Paid Time Off
• Casual workplace with an unbelievable feeling of energy

Canoo is an equal opportunity-affirmative action employer and considers all qualified applicants for employment based on business needs, job requirements and individual qualifications, without regard to race, color, religion, sex, age, disability, sexual orientation, gender identity or expression, marital status, past or present military service or any other status protected by the laws or regulations in the locations where we operate. We also consider qualified applicants with criminal histories consistent with applicable federal, state and local law.

Any unsolicited resumes or candidate profiles submitted in response to our job posting shall be considered the property of Canoo Inc. and its subsidiaries and are not subject to payment of referral or placement fees if any such candidate is later hired by Canoo unless you have a signed written agreement in place with us which covers the applicable job posting. 

Canoo maintains compliance with the OFCCP. As such, please feel free to review the following information: 

https://www.dol.gov/agencies/ofccp/posters

https://www.dol.gov/agencies/olms/poster/labor-rights-federal-contractors

If you are a person with a disability needing assistance with the application process, please call (310) 702-7907 or email us at talentacquisitionteam@canoo.com