About the Role
Core Security Engineering's mission is to make Uber's infrastructure secure by default. Our team builds the security primitives and platform services that enable every Uber engineer to operate safely at scale.
As a Software Engineer II on the Platform Security team, you'll help scale Uber's identity and access systems-powering Zero Trust, securing AI infrastructure, and eliminating secrets through federated workload identity. Your work will directly impact the security of every service and engineer across Uber's global platform.
What the Candidate Will Need / Bonus Points
---- What the Candidate Will Do ----
- Design, build, and maintain backend systems that enable Zero Trust security across Uber's infrastructure, including workload and personnel authentication.
- Scale identity-driven access control by contributing to systems like S2S/P2S authentication, workload identity federation, and secretless service integrations.
- Drive reliability and operational excellence by setting up monitoring (logs, metrics, alerts), supporting production systems, and responding to outages or security incidents.
- Write clear technical design documents that prioritize scalability, security, and maintainability-especially for identity and access workflows.
- Partner closely with AI infrastructure and platform teams to secure AI workloads, ensuring strong authentication and access boundaries are in place by default.
Want more jobs like this?
Get jobs in San Francisco, CA delivered to your inbox every week.
---- Basic Qualifications ----
- Bachelor's degree in computer science or related field.
- 2+ years of experience in software engineering with knowledge of system design and architecture.
- Experience with agile development and adopting engineering best practices
- Experience at least one object-oriented programming language (e.g. Java, C++, Python, Go, C#).
---- Preferred Qualifications ----
- Deep expertise in identity and access management (IAM), with hands-on experience designing or scaling Service-to-Service (S2S) and Personnel-to-Service (P2S) authentication in complex, distributed environments.
- Strong understanding of Zero Trust Architecture (ZTA), workload identity federation, and the use of ephemeral credentials (e.g., SPIFFE/SPIRE, OIDC, mTLS) to eliminate secrets and enable fine-grained access control.
- Experience contributing to or operating critical open-source projects such as Kubernetes, Envoy, Istio, SPIRE/SPIFFE, or security-focused libraries like Google Tink.
- Familiarity with threat modeling, workload security, and building highly reliable authentication platforms that enable auditability, compliance (e.g., SOX, PSD2), and secure-by-default patterns at scale.
For San Francisco, CA-based roles: The base salary range for this role is USD$167,000 per year - USD$185,500 per year.
You will be eligible to participate in Uber's bonus program, and may be offered an equity award & other types of comp. You will also be eligible for various benefits. More details can be found at the following link https://www.uber.com/careers/benefits.
Uber is proud to be an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you have a disability or special need that requires accommodation, please let us know by completing this form.
Offices continue to be central to collaboration and Uber's cultural identity. Unless formally approved to work fully remotely, Uber expects employees to spend at least half of their work time in their assigned office. For certain roles, such as those based at green-light hubs, employees are expected to be in-office for 100% of their time. Please speak with your recruiter to better understand in-office expectations for this role.