Home › Companies › Zoox › Senior/Staff Network Security Engineer
Senior/Staff Network Security Engineer
Zoox · Foster City, CA · Hybrid · Active · $190,000–$228,000 / year · Lever
Job facts
| Field | Value |
|---|---|
| Company | Zoox |
| Title | Senior/Staff Network Security Engineer |
| Normalized title | - |
| Department / team | Information Technology and Applications / Enterprise Security |
| Location | Foster City, CA, United States |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | $190,000–$228,000 / year |
| Status | active |
| ATS provider | Lever |
| Posted / first seen | 2026-06-03 / 2026-06-04 |
| Changed / last seen | 2026-06-04 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Zoox. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Lever. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Foster City. | Open |
| Department jobs | Active postings in Information Technology and Applications. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Zoox |
| Source | 45f1a12e-419b-4b96-93be-f479c9356a1b |
| ATS provider | Lever |
Description
Zoox's Network Security team architects and defends the digital borders of the company — from corporate offices to engineering labs and product/mission environments. As a Senior or Staff Network Security Engineer, you will design, implement, and operate security controls across Zoox's enterprise, OT networks, and cloud infrastructure spanning on-premises data centers and public cloud environments (AWS, GCP), partnering closely with Network Engineering, IT, Product Security, and Software Engineering teams.
About Zoox
Zoox is developing the first ground-up, fully autonomous vehicle fleet and the supporting ecosystem required to bring this technology to market. Sitting at the intersection of robotics, machine learning, and design, Zoox aims to provide the next generation of mobility-as-a-service in urban environments. We’re looking for top talent that shares our passion and wants to be part of a fast-moving and highly execution-oriented team.
Follow us on LinkedIn
Accommodations
If you need an accommodation to participate in the application or interview process please reach out to [email protected] or your assigned recruiter.
A Final Note:
You do not need to match every listed expectation to apply for this position. Here at Zoox, we know that diverse perspectives foster the innovation we need to be successful, and we are committed to building a team that encompasses a variety of backgrounds, experiences, and skills.
In This Role, You Will...
Design, implement, and maintain secure hybrid/multi-cloud network architectures (AWS/GCP, CloudWAN, SD-WAN); enforce zero-trust access controls and network segmentation across corporate, data center, lab, and edge environments; develop and maintain related policies, standards, and architecture diagrams
Own and operate next-generation firewall platforms (Palo Alto Networks, Fortinet), managing policy architecture, segmentation, NAT, URL filtering, SSL/TLS decryption, and threat prevention tuning
Architect, operate, and own the lifecycle of secure remote access solutions (VPN, ZTNA, GlobalProtect, site-to-site tunnels), ensuring high availability, certificate-based authentication, and integration with identity providers (SAML, Entra ID)
Drive automation and Infrastructure-as-Code (IaC) using Terraform, Python, CI/CD, and REST APIs for configuration management, firewall policies, and security baselines; integrate LLM-based tools to streamline operational tasks and reduce manual toil
Oversee security operations including 24/7 network security monitoring, traffic analysis, threat detection, vulnerability assessments, and remediation; support compliance requirements by conducting security reviews for new projects and infrastructure changes
Lead 802.1X/certificate-based Network Access Control (NAC) initiatives across wired and wireless environments
Define team roadmap, mentor engineers, and lead cross-functional security initiatives with Product Security, SRE, IT, and Software Engineering teams
Qualifications
Experience: 8+ years of network security engineering experience securing enterprise, cloud, and OT/lab environments
Platform Expertise: Deep, hands-on expertise in next-gen firewalls (Palo Alto, Fortinet), AWS NFW, WAFs, IDS/IPS, NAC/802.1X, PKI, VPN, and ZTNA solutions (Zscaler, Prisma Access, or equivalent)
Technical Knowledge: Strong understanding of core network protocols (TCP/IP, BGP, OSPF, VLAN, 802.1X, TLS/PKI) and cloud networking security principles (AWS, GCP, or Azure)
Automation: Hands-on experience with IaC and automation tooling including Terraform, Python, CI/CD pipelines, and REST APIs
Security Operations: Experience with network security monitoring, threat detection, and security operations tooling (SIEM, IDS/IPS, Zeek, Suricata, vulnerability management platforms), including integration with network controls
Compliance: Proven experience supporting major compliance initiatives (NIST 800-53, CSF 2.0, ISO 27001), including control implementation and evidence collection
Bonus Qualifications
Experience in autonomous vehicle, robotics, or automotive environments
Certifications: PCNSE, AWS Security Specialty, CCNP/CCIE Security, or CISSP
Experience experimenting with or deploying AI/ML-based security capabilities (e.g., anomaly detection, behavioral analytics, LLM-driven copilots) in network or cloud security workflows
Full job record
| Job ID | 32513db5d1ff7e2a90ee2b32aed7c48e7ffadd8f |
| Org ID | 518be277-8ec5-4735-b0ad-193a2bc397c7 |
| Source ID | 45f1a12e-419b-4b96-93be-f479c9356a1b |
| Board ID | 45f1a12e-419b-4b96-93be-f479c9356a1b |
| Provider | lever |
| Provider Job Key | 9945ef61-1c15-4cf1-9734-b65944c73757 |
| Title | Senior/Staff Network Security Engineer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Foster City, CA |
| Department | Information Technology and Applications |
| Team | Enterprise Security |
| Employment Type | Full-time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | United States |
| Region | CA |
| City | Foster City |
| Salary Raw | USD 190000-228000 per-year-salary |
| Salary Min | 190,000 |
| Salary Max | 228,000 |
| Salary Currency | USD |
| Salary Period | year |
| Source URL | https://jobs.lever.co/zoox/9945ef61-1c15-4cf1-9734-b65944c73757 |
| Apply URL | https://jobs.lever.co/zoox/9945ef61-1c15-4cf1-9734-b65944c73757/apply |
| First Seen At | 2026-06-04 11:28:29Z |
| Last Seen At | 2026-06-06 20:04:34Z |
| Last Checked At | 2026-06-06 20:04:34Z |
| Last Changed At | 2026-06-04 11:28:29Z |
| Inactive At | — |
| Source Posted At | 2026-06-03 20:59:10Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=lever/board=zoox/date=2026-06-06/2026-06-06T20-04-33-960Z-dbc899b7b70bd68deef4fecc07510b625903b1c9c1b990b1843279904e7d9bc6.json |
Event Fields
{
"content_hash": "8a3473935b7ba81aa1163bea130e3ff461eaf3c1965d057356566b0b23c907fd",
"source_hash": "1a4e8e35b539045c8a432acf2eb21579205401716e8885a5a90c608543ddef60",
"last_changed_at": "2026-06-04T11:28:29.407Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Foster City, CA",
"city": "Foster City",
"region": "CA",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"salary_max": 228000,
"salary_min": 190000,
"inferred_at": "2026-06-06T20:04:34.911Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Foster City, CA",
"city": "Foster City",
"region": "CA",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"countries": [
"United States"
]
},
"remote_policy": "hybrid",
"salary_period": "year",
"workplace_type": "hybrid",
"salary_currency": "USD"
}Extensions
{}Native Structured
{
"lists": [
{
"text": "In This Role, You Will...",
"content": "<div>\n\n<li>Design, implement, and maintain secure hybrid/multi-cloud network architectures (AWS/GCP, CloudWAN, SD-WAN); enforce zero-trust access controls and network segmentation across corporate, data center, lab, and edge environments; develop and maintain related policies, standards, and architecture diagrams</li>\n<li>Own and operate next-generation firewall platforms (Palo Alto Networks, Fortinet), managing policy architecture, segmentation, NAT, URL filtering, SSL/TLS decryption, and threat prevention tuning</li>\n<li>Architect, operate, and own the lifecycle of secure remote access solutions (VPN, ZTNA, GlobalProtect, site-to-site tunnels), ensuring high availability, certificate-based authentication, and integration with identity providers (SAML, Entra ID)</li>\n<li>Drive automation and Infrastructure-as-Code (IaC) using Terraform, Python, CI/CD, and REST APIs for configuration management, firewall policies, and security baselines; integrate LLM-based tools to streamline operational tasks and reduce manual toil</li>\n<li>Oversee security operations including 24/7 network security monitoring, traffic analysis, threat detection, vulnerability assessments, and remediation; support compliance requirements by conducting security reviews for new projects and infrastructure changes</li>\n<li>Lead 802.1X/certificate-based Network Access Control (NAC) initiatives across wired and wireless environments</li>\n<li>Define team roadmap, mentor engineers, and lead cross-functional security initiatives with Product Security, SRE, IT, and Software Engineering teams</li>\n\n</div>"
},
{
"text": "Qualifications",
"content": "<div>\n\n<li>Experience: 8+ years of network security engineering experience securing enterprise, cloud, and OT/lab environments</li>\n<li>Platform Expertise: Deep, hands-on expertise in next-gen firewalls (Palo Alto, Fortinet), AWS NFW, WAFs, IDS/IPS, NAC/802.1X, PKI, VPN, and ZTNA solutions (Zscaler, Prisma Access, or equivalent)</li>\n<li>Technical Knowledge: Strong understanding of core network protocols (TCP/IP, BGP, OSPF, VLAN, 802.1X, TLS/PKI) and cloud networking security principles (AWS, GCP, or Azure)</li>\n<li>Automation: Hands-on experience with IaC and automation tooling including Terraform, Python, CI/CD pipelines, and REST APIs</li>\n<li>Security Operations: Experience with network security monitoring, threat detection, and security operations tooling (SIEM, IDS/IPS, Zeek, Suricata, vulnerability management platforms), including integration with network controls</li>\n<li>Compliance: Proven experience supporting major compliance initiatives (NIST 800-53, CSF 2.0, ISO 27001), including control implementation and evidence collection</li>\n\n</div>"
},
{
"text": "Bonus Qualifications",
"content": "<div>\n\n<li>Experience in autonomous vehicle, robotics, or automotive environments</li>\n<li>Certifications: PCNSE, AWS Security Specialty, CCNP/CCIE Security, or CISSP</li>\n<li>Experience experimenting with or deploying AI/ML-based security capabilities (e.g., anomaly detection, behavioral analytics, LLM-driven copilots) in network or cloud security workflows</li>\n\n</div>"
}
],
"country": "US",
"createdAt": 1780520350651,
"updatedAt": null,
"categories": {
"team": "Enterprise Security",
"location": "Foster City, CA",
"commitment": "Full-time",
"department": "Information Technology and Applications",
"allLocations": [
"Foster City, CA"
]
},
"salaryRange": {
"max": 228000,
"min": 190000,
"currency": "USD",
"interval": "per-year-salary"
},
"workplaceType": "hybrid"
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/32513db5d1ff7e2a90ee2b32aed7c48e7ffadd8f?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/518be277-8ec5-4735-b0ad-193a2bc397c7JSONGET https://api.bluedoor.sh/job-postings/v1/sources/45f1a12e-419b-4b96-93be-f479c9356a1bJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/32513db5d1ff7e2a90ee2b32aed7c48e7ffadd8f/eventsJSON