Canoo’s mission is to bring EVs to Everyone and build a world-class team to deploy this sustainable mobility revolution. We have developed breakthrough electric vehicles that are reinventing the automotive landscape with pioneering technologies, award-winning designs, and a unique business model that spans all owners in the full lifecycle of the vehicle. Canoo is starting production and is distinguished by its pioneering and experienced team of technologists, engineers, and designers. With offices around the country, the company is scaling quickly and seeking candidates who love to challenge themselves, are motivated by purpose, and possess a strong desire to get things done.

The “Canoo Way”

Canoo’s success is the direct result of our disciplined application of our core operating principles and drills, which are based on three main principles: Think 80/20 (“Important versus less important”), Act 30/30 (“Reduce waste and increase output”), and Live 90/10 (“We have each other’s back”). We hire based on “MET” - Mindset, Equipment and willingness to Train - and seek individuals that take accountability and deliver results while being Humble, Hungry to succeed, and Hunting for opportunities to win. We train our team to engage with each other by modulating between their intellect (iQ) and emotional intelligence (eQ), applying Facts, Finesse, and Force when they communicate. The principles and drills of the CANOO Way have been fundamental to our success, our ability to grow, continuously improve, innovate and are at the core of our day-to-day operations.

The Cloud Security Engineer will be an integral member of the Cloud Security team focused on Canoo’s overall Cloud Security posture, DevSecOps, Enterprise Identity and Access Management (IAM), detailed technical standards and playbooks, and implementing tools to improve the security of cloud workloads. The Cloud Security Engineer is responsible for designing, implementing, and maintaining cloud security solutions within the Google Cloud Platform (GCP), , Amazon Web Services (AWS), and other cloud-based SaaS providers.

The Cloud Security Engineer works closely with the Architects and Cloud service providers in building and maintaining security best practices,controls, logging, monitoring, and detection of threat anomalies.

• Set up, configure, customize, and implement cloud-based services to business specifications in company environment.
• Own the security posture for Canoo’s infrastructure and applications in GCP and AWS.
• Use cloud-native services to ensure that security guardrails are in place for application teams to use GCP services securely.
• Define standards and develop reusable templates for the application teams to use.
• Review architecture plans as part of “Shift Left” approach. Be a ready, willing, and proactive partner with other teams to achieve secure and agile development.
• Participate and contribute to security planning sessions with cloud operations and development teams.
• Work collaboratively with application and infrastructure teams to define standards for secure development pipelines.
• Develop and deploy continuous compliance monitoring capabilities.
• Own Cyber Security operational metrics for application and infrastructure engineering teams.
• Serve as a key technical security partner for engineering teams.
• Coordinate with developers, cloud platform engineers, the business, and cloud service providers on security framework design requirements for cloud application services.
• Research Cyber Security trends and emerging technologies, identify our business and technical requirements, perform technical evaluation and support deployment of Cyber Security solutions.

#LI-SK1

Required 

• BS or MS degree in Computer Science / Engineering or a related field, or equivalent experience
• 10+ years over all related software engineering experience
• 3 - 5+ years of hands-on experience building, maintaining, and securing Cloud environments in AWS, GCP, and/or Azure.
• A minimum of 2 years of experience implementing security solutions within cloud environments is required.
• Experience reviewing architectural diagrams for proposed solutions and implements the standard cloud or on prem services based on compute, data, or security requirements.

• Experience with a diverse set of security products like Okta IAM,  Microsoft O365 Security, SIEM (Chronicle), CNAPP (Wiz), key management systems (KMS), PKI.

• Experience with Infrastructure as Code (IaC) like Terraform, Ansible and Packer preferred; Strong understanding of DevOps practices/tools including CI/CD Pipelines, IaC/ARM templates. Utilize continuous integration and automation tools such as GIT, Jenkins, Ansible, PowerShell, HashiCorp Terraform.

• Hands-on experience with Docker, Kubernetes, and development of modern CI/CD pipelines.

Preferred:

• GCP and/or AWS cloud security certifications.

• Experience with on-premise and hybrid operating environments.

• Experience with third-party vendor/supplier risk management, vulnerability management, workforce security training and phishing awareness, DR/BCP development.

• Experience with networking and physical security in a corporate or manufacturing environment.

• Experience with compliance frameworks like ISO27001, SOC2, and FedRAMP.

• Experience with vehicle security or IoT/OT security.

Physical Requirements

• While performing the duties of this job, employees may be required to sit for prolonged periods of time, occasionally bending or stooping, lifting up to 10 pounds, and prolonged periods of computer use.

Reasonable Accommodations

• Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the position.

• Meaningful, challenging work that will redefine the automotive landscape and make EVs available to everyone
• Comprehensive Health Insurance
• Equity Compensation
• Flexible Paid Time Off
• Casual workplace with an unbelievable feeling of energy

Canoo is an equal opportunity-affirmative action employer and considers all qualified applicants for employment based on business needs, job requirements and individual qualifications, without regard to race, color, religion, sex, age, disability, sexual orientation, gender identity or expression, marital status, past or present military service or any other status protected by the laws or regulations in the locations where we operate. We also consider qualified applicants with criminal histories consistent with applicable federal, state and local law.

Any unsolicited resumes or candidate profiles submitted in response to our job posting shall be considered the property of Canoo Inc. and its subsidiaries and are not subject to payment of referral or placement fees if any such candidate is later hired by Canoo unless you have a signed written agreement in place with us which covers the applicable job posting. 

Canoo maintains compliance with the OFCCP. As such, please feel free to review the following information:

https://www.dol.gov/agencies/ofccp/posters

https://www.dol.gov/agencies/olms/poster/labor-rights-federal-contractors

If you are a person with a disability needing assistance with the application process, please call (214) 529-8055 or email us at talentacquisitionteam@canoo.com

Equal Employment Opportunity Posters

Equal Employment Opportunity Posters | U.S. Department of Labor (dol.gov)