Leading the future in luxury electric and mobility
At Lucid, we set out to introduce the most captivating, luxury electric vehicles that elevate the human experience and transcend the perceived limitations of space, performance, and intelligence. Vehicles that are intuitive, liberating, and designed for the future of mobility.
We plan to lead in this new era of luxury electric by returning to the fundamentals of great design – where every decision we make is in service of the individual and environment. Because when you are no longer bound by convention, you are free to define your own experience.
Come work alongside some of the most accomplished minds in the industry. Beyond providing competitive salaries, we’re providing a community for innovators who want to make an immediate and significant impact. If you are driven to create a better, more sustainable future, then this is the right place for you.
We are seeking a skilled and motivated API Security Assessment Engineer to join our team. The ideal candidate will have experience in API security assessments and possess a basic understanding of various technologies such as AWS Lambda, Serverless Framework, Kubernetes, Docker, Apache Kafka, Istio etc. This is an excellent opportunity for a junior to mid-level professional looking to develop their expertise in API security and contribute to the security posture of our organization.
Join our team and contribute to ensuring the security and integrity of our APIs as we strive to deliver secure and reliable services to our customers. Apply now and be part of our mission to protect sensitive data and maintain the highest standards of API security.
Responsibilities:
- Conduct security assessments of APIs to identify potential vulnerabilities, weaknesses, and risks.
- Collaborate with development teams to provide guidance on implementing secure API architectures.
- Perform code reviews and provide recommendations for secure coding practices.
- Assist in the development and maintenance of security testing methodologies, tools, and frameworks for API security assessments.
- Stay updated with the latest security threats, vulnerabilities, and industry best practices related to API security.
- Create and maintain documentation of security assessment findings, recommendations, and mitigation strategies.
- Collaborate with cross-functional teams to remediate identified vulnerabilities and ensure the security of APIs.
- Participate in the design and implementation of secure API authentication and authorization mechanisms.
- Contribute to training and workshops for development teams on API security best practices.
Required Qualifications:
- Bachelor’s degree in computer science, Information Security
- 5 + years of related experience in the related field
- Experience or strong interest in API security assessments and vulnerability management.
- Basic understanding of API security best practices and standards (e.g., OWASP API Security Top 10).
- Familiarity with some of the following technologies: AWS Lambda, Serverless Framework, Kubernetes, Docker, Apache Kafka, Istio, Envoy Proxy, Grafana, Prometheus, Cert Manager, Alert Manager, DEX, Kiali, Fluentd, Jaeger, Gigya, Okta.
- Knowledge of authentication and authorization protocols (e.g., OAuth, JWT) is a plus.
- Basic understanding of secure coding practices and common vulnerabilities in web applications and APIs.
- Strong problem-solving and analytical skills.
- Excellent written and verbal communication skills.
Preferred Qualifications:
- Master’s degree in computer science or Information Security
- Relevant certifications such as Certified Secure Software Lifecycle Professional (CSSLP) or Certified Application Security Engineer (CASE) are a plus.
- Familiarity with security assessment tools such as Burp Suite, OWASP ZAP, or similar is a plus.
Salary Range:
The compensation range for this position is specific to the locations listed below and is the range Lucid reasonably and in good faith expects to pay for the position taking into account the wide variety of factors that are considered in making compensation decisions, including job-related knowledge; skillset; experience, education and training; certifications; and other relevant business and organizational factors.
California (Bay Area) – $127,000 • $165,000 per year
Additional Compensation and Benefits:
Lucid offers a wide range of competitive benefits, including medical, dental, vision, life insurance, disability insurance, vacation, and 401k. The successful candidate may also be eligible to participate in Lucid’s equity program and/or a discretionary annual incentive program, subject to the rules governing such programs. (Cash or equity incentive
awards, if any, will depend on various factors, including, without limitation, individual and company performance.)
Lucid maintains your privacy according to its Candidate Privacy Notice. If you are a California resident, please refer to our California Candidate Privacy Notice.
At Lucid, we don’t just welcome diversity – we celebrate it! Lucid Motors is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, national or ethnic origin, age, religion, disability, sexual orientation, gender, gender identity and expression, marital status, and any other characteristic protected under applicable State or Federal laws and regulations.
Notice regarding COVID-19 protocols
At Lucid, we prioritize the health and wellbeing of our employees, families, and friends above all else. In response to the novel Coronavirus all new Lucid employees, whose job will be based in the United States may or may not be required to provide original documentation confirming status as having received the prescribed inoculation (doses). Vaccination requirements are dependent upon location and position, please refer to the job description for more details.
Individuals in positions requiring vaccinations may seek a medical and/or religious exemption from this requirement and may be granted such an accommodation after submitting a formal request to and the subsequent review and approval thereof by our dedicated Covid-19 Response team.
To all recruitment agencies: Lucid Motors does not accept agency resumes. Please do not forward resumes to our careers alias or other Lucid Motors employees. Lucid Motors is not responsible for any fees related to unsolicited resumes.