ALSO. · 1 week ago
Staff Security Engineer (Cloud, Mobile & PKI)
Palo Alto, CA
Full-time
Onsite
Senior Level, Lead/Staff
$220K/yr - $250K/yr
7+ years expALSO is an electric mobility company focused on creating innovative small EVs to meet global mobility challenges. They are seeking a Staff Security Engineer to drive the security of their infrastructure and product ecosystem, collaborating with various teams to design and implement secure architectures and manage vulnerabilities.
AutomotiveElectric VehicleManufacturingTransportation
Responsibilities
Develop and enforce cloud security frameworks, policies, and automation for threat detection and incident response and lead the design and implementation of secure architectures across AWS and mobile environments (Android, iOS)
Partner with DevOps and product teams to integrate security into CI/CD pipelines, release processes and spearhead DevSecops Initiatives and conduct mobile app security assessments (static, dynamic, runtime), and guide teams on secure development practices
Architect, deploy, and maintain PKI systems that enable secure device identity, authentication, and communication, Develop automation and tooling to support certificate lifecycle management and hardware-backed security
Collaborate with firmware teams on secure boot, certificate provisioning, and cryptographic key management and evaluate emerging technologies (e.g., HSMs, TPMs, secure enclaves) for secure firmware integration
Own the end-to-end vulnerability management lifecycle, from detection to triage to remediation
Partner with developers to prioritize and fix vulnerabilities efficiently, providing expert-level guidance
Act as a security SME for engineering teams, providing technical guidance and mentorship, Lead threat modeling sessions, design reviews, and post-incident analyses
Drive security awareness and training initiatives across product and engineering organizations and represent the security function in architectural discussions and executive reviews
Qualification
Required
7+ years of experience in security engineering, including hands-on work with software systems
Strong programming experience in Python and Golang
Deep understanding of AWS security services (IAM, KMS, CloudTrail, Security Hub, etc.)
Proven experience designing, deploying, and managing PKI and certificate infrastructure
Strong background in mobile application security (Android/iOS frameworks, secure communication, app hardening)
Excellent analytical and problem-solving skills
Strong communication and collaboration across teams
Ability to influence and lead without direct authority
Preferred
Experience with IoT or connected device ecosystems
Knowledge of cryptographic protocols (TLS, X.509, RSA, OCSP)
Contributions to open-source security projects or internal tooling
Certifications such as AWS Security Specialty, CISSP, OSCP
Benefits
Robust health coverage.
Excellent health, dental and vision insurance covered up to 100% by ALSO with FSA & HSA options.
One Medical membership and dedicated insurance advocates.
Rich fertility and family building benefits with Progyny.
Flexible time off.
401(k) match.
Company
ALSO.
We’re ALSO, an electric mobility company originally conceived as a part of Rivian.
201-500 employees
H1B Sponsorship
ALSO. has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (21)
Funding
Current Stage
Growth StageTotal Funding
$305MKey Investors
GreenoaksEclipse Ventures
2025-07-08Series Unknown· $200M
2025-03-26Series Unknown· $105M
Recent News
2025-12-04
2025-11-18
Company data provided by crunchbase