What you'd actually do

Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target-state operating model across enterprise and backend operational security domains.

Develop enterprise security reference architectures, design patterns, and technical standards for endpoint security, network security, infrastructure security, enterprise vulnerability management, data protection, resilience, enterprise platforms, and security tooling.

Translate security strategy, governance requirements, and business priorities into scalable technical architecture and implementation guidance.

Partner with GRC to operationalize security policies, standards, and control objectives into practical enterprise security architectures.

Help shape long-term strategy for enterprise security capabilities, including emerging needs related to AI security, automation, infrastructure modernization, and operational resilience.

Skills

Required

10+ years of professional experience in Information Security, Enterprise Architecture, Security Engineering, or related technical leadership capacities.
5+ years specifically focused on designing enterprise-scale security architectures across diverse domains, including endpoint, network, infrastructure, vulnerability management, resilience, and enterprise platforms.
Demonstrated success in developing enterprise security architecture strategies, reference architectures, and scalable technical standards.
Extensive technical depth in Zero Trust principles, enterprise security frameworks, and modern backend or enterprise security architecture design patterns.
Comprehensive knowledge of core enterprise security domains, including endpoint security, network security, PKI, enterprise vulnerability management, resilience, data protection, and governance integration.
Proven ability to translate governance, compliance, and strategic business requirements into actionable technical architecture and implementation guidance.
Experience representing security interests within architecture review boards, governance committees, or enterprise-wide design councils.
Advanced familiarity with enterprise infrastructure, SaaS ecosystems, internal platforms, and the strategic integration of security tooling.
Adept at evaluating technical tradeoffs, identifying scalability constraints, and assessing the long-term implications of enterprise security architecture decisions.
Exceptional documentation skills, including the creation of detailed architecture diagrams, technical standards, and strategic narratives for executive leadership.
Proven capacity to influence technical and business stakeholders across multifaceted cross-functional teams.
Strong strategic mindset, complex problem-solving abilities, and a track record of organizational leadership.

Nice to have

Direct experience in the automotive industry.
Knowledge of enterprise architecture committee structures and multifaceted cross-functional governance models.
Expert-level knowledge on AI security.

What the JD emphasized

enterprise security architecture strategy

enterprise security reference architectures

enterprise security alignment

enterprise security design

enterprise security investments

enterprise security capabilities

enterprise security platforms

enterprise security design documentation

enterprise security maturity

enterprise security leadership

AI security

Who we are

Aurora’s mission is to deliver the benefits of self-driving technology safely, quickly, and broadly.

The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone.

At Aurora, you will tackle massively complex problems alongside other passionate, intelligent individuals, growing as an expert while expanding your knowledge. For the latest news from Aurora, visit aurora.tech or follow us on LinkedIn.

Aurora hires talented people with diverse backgrounds who are ready to help build a transportation ecosystem that will make our roads safer, get crucial goods where they need to go, and make mobility more efficient and accessible for all. We’re searching for a Staff Security Engineer - Enterprise Security.

In this role, you will

Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target-state operating model across enterprise and backend operational security domains.
Develop enterprise security reference architectures, design patterns, and technical standards for endpoint security, network security, infrastructure security, enterprise vulnerability management, data protection, resilience, enterprise platforms, and security tooling.
Translate security strategy, governance requirements, and business priorities into scalable technical architecture and implementation guidance.
Partner with GRC to operationalize security policies, standards, and control objectives into practical enterprise security architectures.
Support and influence Aurora’s broader Enterprise Architecture Committee by representing enterprise security priorities, technical standards, and strategic design principles.
Participate in architecture review boards, design committees, and strategic planning forums to ensure enterprise security alignment across major initiatives.
Architect secure solutions for workforce platforms, enterprise systems, internal infrastructure, and backend operational ecosystems using Zero Trust principles and modern security frameworks.
Guide enterprise security design for endpoint security, network security, PKI, enterprise vulnerability management, BCP/DR, data security, enterprise infrastructure, and security tooling modernization.
Provide architectural oversight for major enterprise security initiatives, ensuring scalability, interoperability, governance alignment, and reduced fragmentation.
Partner with Security Engineering, GRC, Cloud Security, IT, Product Security, and IAM teams to align technical security capabilities while maintaining clear domain boundaries.
Identify architectural gaps, capability overlaps, and opportunities to streamline enterprise security investments.
Help shape long-term strategy for enterprise security capabilities, including emerging needs related to AI security, automation, infrastructure modernization, and operational resilience.
Support security tooling strategy by evaluating architectural fit, integration models, and long-term scalability of enterprise security platforms.
Establish and maintain enterprise security design documentation, architecture diagrams, reference standards, and technical governance artifacts.
Guide enterprise security maturity by aligning architecture to frameworks such as Zero Trust, NIST CSF, ISO 27001, SOX, SOC 2, and broader operational resilience objectives.
Serve as a strategic advisor to Enterprise Security leadership on architecture, maturity, organizational scaling, and strategic technical investments.
Support Enterprise Security leadership with strategic technical narratives that improve executive and business understanding of enterprise security investments.

Required Qualifications

10+ years of professional experience in Information Security, Enterprise Architecture, Security Engineering, or related technical leadership capacities.
5+ years specifically focused on designing enterprise-scale security architectures across diverse domains, including endpoint, network, infrastructure, vulnerability management, resilience, and enterprise platforms.
Demonstrated success in developing enterprise security architecture strategies, reference architectures, and scalable technical standards.
Extensive technical depth in Zero Trust principles, enterprise security frameworks, and modern backend or enterprise security architecture design patterns.
Comprehensive knowledge of core enterprise security domains, including endpoint security, network security, PKI, enterprise vulnerability management, resilience, data protection, and governance integration.
Proven ability to translate governance, compliance, and strategic business requirements into actionable technical architecture and implementation guidance.
Experience representing security interests within architecture review boards, governance committees, or enterprise-wide design councils.
Advanced familiarity with enterprise infrastructure, SaaS ecosystems, internal platforms, and the strategic integration of security tooling.
Adept at evaluating technical tradeoffs, identifying scalability constraints, and assessing the long-term implications of enterprise security architecture decisions.
Exceptional documentation skills, including the creation of detailed architecture diagrams, technical standards, and strategic narratives for executive leadership.
Proven capacity to influence technical and business stakeholders across multifaceted cross-functional teams.
Strong strategic mindset, complex problem-solving abilities, and a track record of organizational leadership.

Desirable Qualifications

Direct experience in the automotive industry.
Knowledge of enterprise architecture committee structures and multifaceted cross-functional governance models.
Expert-level knowledge on AI security, security automation, or enterprise-scale modernization initiatives.
Relevant security and architecture certifications (such as CISSP, SABSA, TOGAF, or equivalent) are a plus but not required.

The base salary range for this position is $189,000-$303,000 per year. Aurora’s pay ranges are determined by role, level, and location. Within the range, the successful candidate’s starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.

#LI-KW1

Working at Aurora** **At Aurora, we bring together extraordinarily talented and experienced people united by the strength of our values. We operate with integrity, set outrageous goals, and build a culture where we win together — all without any jerks.

We believe in-person work increases collaboration, empathy and our ability to lead effectively. As a result, we operate in a hybrid work environment where Aurorans are in office at least 3 days per week.

OurCareers page provides insight into what it is like to work at Aurora, and you can find all the latest updates in our Newsroom.

Our commitment to safety

At the core of everything we do is our commitment to safety. Building best-in-class self-driving technology will take time, and we believe that each employee at Aurora has a role in contributing to safety, every step of the way. Aurora expects commitment to our safety policies from every employee, and seeks candidates who take an active responsibility, can contribute to building an atmosphere of trust, and invest in the organization’s long-term success by prioritizing working safely, no matter what.

Our commitment to inclusion

Aurora considers candidates without regard to their race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, pregnancy status, parent or caregiver status, ancestry, political affiliation, veteran and/or military status, physical or mental disability, or any other status protected by federal or state law. Aurora considers qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at careersiteaccommodations@aurora.tech.

For California applicants, information collected and processed as part of your application and any job applications you choose to submit is subject to Aurora’s California Employment Privacy Policy.